Symantec Endpoint Protection
Versi integrasi: 13.0
Mengonfigurasi integrasi Symantec Endpoint Protection di Google Security Operations
Untuk mendapatkan petunjuk mendetail terkait cara mengonfigurasi integrasi di Google SecOps, lihat Mengonfigurasi integrasi.
Parameter integrasi
Gunakan parameter berikut untuk mengonfigurasi integrasi:
| Nama Tampilan Parameter | Jenis | Nilai Default | Wajib | Bantuan |
|---|---|---|---|---|
| Nama pengguna | String | T/A | Ya | Nama pengguna yang akan digunakan dalam integrasi. |
| Sandi | Sandi | T/A | Ya | Sandi yang akan digunakan dalam integrasi. |
| Domain | String | T/A | Ya | Untuk menemukan domain:
|
| Root API | String | T/A | Ya | Misalnya: https://SEPM_IP:8446 |
| Verifikasi SSL | Kotak centang | Tidak dicentang | Ya | Jika diaktifkan, akan memverifikasi bahwa sertifikat SSL untuk koneksi ke server Symantec Endpoint Protection valid. |
Tindakan
Hash Blok
Deskripsi
Memblokir hash tertentu di endpoint.
Parameter
| Parameter | Jenis | Nilai Default | Deskripsi |
|---|---|---|---|
| Nama Daftar Blokir | String | T/A | Nama daftar hitam untuk menambahkan hash. |
Kasus penggunaan
T/A
Run On
Tindakan ini dijalankan pada entity Filehash.
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| berhasil | Benar/Salah | success:False |
Hasil JSON
N/A
Menonaktifkan Insight Download
Deskripsi
Nonaktifkan insight download di endpoint.
Parameter
| Parameter | Jenis | Nilai Default | Deskripsi |
|---|---|---|---|
| Jangka Waktu | String | T/A | T/A |
Kasus penggunaan
T/A
Run On
Tindakan ini berjalan di entity berikut:
- Alamat IP
- Hostname
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| berhasil | Benar/Salah | success:False |
Hasil JSON
N/A
Nonaktifkan NTP
Deskripsi
Nonaktifkan NTP di endpoint.
Parameter
| Parameter | Jenis | Nilai Default | Deskripsi |
|---|---|---|---|
| Jangka Waktu | String | 5 | T/A |
Kasus penggunaan
T/A
Run On
Tindakan ini berjalan di entity berikut:
- Alamat IP
- Hostname
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| berhasil | Benar/Salah | success:False |
Hasil JSON
N/A
Mengaktifkan Insight Download
Deskripsi
Aktifkan insight download di endpoint.
Parameter
T/A
Kasus penggunaan
T/A
Run On
Tindakan ini berjalan di entity berikut:
- Alamat IP
- Hostname
Hasil Tindakan
Pengayaan Entity
T/A ##### Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| berhasil | Benar/Salah | success:False |
Hasil JSON
N/A
Mengaktifkan NTP
Deskripsi
Aktifkan NTP di endpoint.
Parameter
T/A
Kasus penggunaan
T/A
Run On
Tindakan ini berjalan di entity berikut:
- Alamat IP
- Hostname
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| berhasil | Benar/Salah | success:False |
Hasil JSON
N/A
Dapatkan Laporannya
Deskripsi
Mendapatkan laporan status perintah.
Parameter
| Parameter | Jenis | Nilai Default | Deskripsi |
|---|---|---|---|
| ID Perintah | String | 7E975C32C71349E9BE495EC2220B902F | T/A |
Kasus penggunaan
T/A
Run On
Tindakan ini dijalankan di semua entity.
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| sandbox | T/A | T/A |
Hasil JSON
[
{
"computerName": "HOST_1",
"subStateId": 0,
"hardwareKey": "36817A7B13C3A6317932AD9819097123",
"computerId": "9C9850840A0000BD3566F8ECC8417123",
"domainName": "Default",
"stateId": 0,
"computerIp": "1.1.1.1",
"currentLoginUserName": "admin"
},
{
"computerName": "HOST_2",
"subStateId": 0,
"hardwareKey": "36817A7B13C3A6317932AD9819097123",
"computerId": "9C9850840A0000BD3566F8ECC8417123",
"domainName": "Default",
"stateId": 0,
"computerIp": "1.1.1.1",
"currentLoginUserName": "admin"
}
]
Mendapatkan Laporan dan Memperkaya
Deskripsi
Mendapatkan laporan status perintah dan memperkaya entitas.
Parameter
| Parameter | Jenis | Nilai Default | Deskripsi |
|---|---|---|---|
| ID Perintah | String | 7E975C32C71349E9BE495EC2220B902F | T/A |
Kasus penggunaan
T/A
Run On
Tindakan ini dijalankan di semua entity.
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| sandbox | T/A | T/A |
Hasil JSON
[
{
"computerName": "HOST_3",
"subStateId": 0,
"hardwareKey": "36817A7B13C3A6317932AD9819097123",
"computerId": "9C9850840A0000BD3566F8ECC8417123",
"domainName": "Default",
"stateId": 0,
"computerIp": "1.1.1.1",
"currentLoginUserName": "admin"
},
{
"computerName": "HOST_4",
"subStateId": 0,
"hardwareKey": "36817A7B13C3A6317932AD9819097123",
"computerId": "9C9850840A0000BD3566F8ECC8417123",
"domainName": "Default",
"stateId": 0,
"computerIp": "1.1.1.1",
"currentLoginUserName": "admin"
}
]
Mendapatkan Info Sistem
Deskripsi
Mendapatkan informasi sistem untuk endpoint.
Parameter
T/A
Kasus penggunaan
T/A
Run On
Tindakan ini berjalan di entity Hostname.
Hasil Tindakan
Pengayaan Entity
| Nama Kolom Pengayaan | Logika-Kapan harus diterapkan |
|---|---|
| profileVersion | Menampilkan apakah ada di hasil JSON |
| elamOnOff | Menampilkan apakah ada di hasil JSON |
| avEngineOnOff | Menampilkan apakah ada di hasil JSON |
| majorVersion | Menampilkan apakah ada di hasil JSON |
| profileChecksum | Menampilkan apakah ada di hasil JSON |
| atpDeviceId | Menampilkan apakah ada di hasil JSON |
| processorType | Menampilkan apakah ada di hasil JSON |
| oslanguage | Menampilkan apakah ada di hasil JSON |
| licenseId | Menampilkan apakah ada di hasil JSON |
| licenseStatus | Menampilkan apakah ada di hasil JSON |
| grup | Menampilkan apakah ada di hasil JSON |
| domain | Menampilkan apakah ada di hasil JSON |
| id | Menampilkan apakah ada di hasil JSON |
| nama | Menampilkan apakah ada di hasil JSON |
| uuid | Menampilkan apakah ada di hasil JSON |
| groupUpdateProvider | Menampilkan apakah ada di hasil JSON |
| edrStatus | Menampilkan apakah ada di hasil JSON |
| freeDisk | Menampilkan apakah ada di hasil JSON |
| snacicenseId | Menampilkan apakah ada di hasil JSON |
| diskDrive | Menampilkan apakah ada di hasil JSON |
| osFunction | Menampilkan apakah ada di hasil JSON |
| cidsDrvMulfCode | Menampilkan apakah ada di hasil JSON |
| mobilePhone | Menampilkan apakah ada di hasil JSON |
| jobTitle | Menampilkan apakah ada di hasil JSON |
| lastHeuristicThreatTime | Menampilkan apakah ada di hasil JSON |
| osname | Menampilkan apakah ada di hasil JSON |
| winServers | Menampilkan apakah ada di hasil JSON |
| idsSerialNo | Menampilkan apakah ada di hasil JSON |
| employeeNumber | Menampilkan apakah ada di hasil JSON |
| lastSiteId | Menampilkan apakah ada di hasil JSON |
| uwf | Menampilkan apakah ada di hasil JSON |
| currentClientId | Menampilkan apakah ada di hasil JSON |
| osbitness | Menampilkan apakah ada di hasil JSON |
| osanguage | Menampilkan apakah ada di hasil JSON |
| lastScanTime | Menampilkan apakah ada di hasil JSON |
| dnsServers | Menampilkan apakah ada di hasil JSON |
| securityVirtualAppliance | Menampilkan apakah ada di hasil JSON |
| worstInfectionIdx | Menampilkan apakah ada di hasil JSON |
| encryptedDevicePassword | Menampilkan apakah ada di hasil JSON |
| ptpOnOff | Menampilkan apakah ada di hasil JSON |
| kernel | Menampilkan apakah ada di hasil JSON |
| svaId | Menampilkan apakah ada di hasil JSON |
| lastConnectedIpAddr | Menampilkan apakah ada di hasil JSON |
| agentVersion | Menampilkan apakah ada di hasil JSON |
| ipAddresses | Menampilkan apakah ada di hasil JSON |
| agentTimeStamp | Menampilkan apakah ada di hasil JSON |
| osfunction | Menampilkan apakah ada di hasil JSON |
| osMajor | Menampilkan apakah ada di hasil JSON |
| deploymentTargetVersion | Menampilkan apakah ada di hasil JSON |
| osMinor | Menampilkan apakah ada di hasil JSON |
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| berhasil | Benar/Salah | success:False |
Hasil JSON
N/A
Membuat Daftar Endpoint
Deskripsi
Mencantumkan semua endpoint/sensor yang dikonfigurasi di perangkat tertentu.
Parameter
T/A
Kasus penggunaan
T/A
Run On
Tindakan ini dijalankan di semua entity.
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| endpoint | T/A | T/A |
Hasil JSON
[
{
"EntityResult": {
"profileVersion": "14.0.1904",
"elamOnOff": 1,
"avEngineOnOff": 1,
"majorVersion": 14,
"profileChecksum": "None",
"atpDeviceId": "",
"processorType": "Intel64 Family 6 Model 78 Stepping 3",
"oslanguage": "None",
"licenseId": "",
"licenseStatus": -1,
"group": {
"domain": {
"id": "163240A90A0000BD1BAAF73394A403B0",
"name": "Default"
},
"fullPathName": "None",
"id": "201DB33F0A0000BD587D90FA64799744",
"name": "My Company\\\\Default Group"
},
"uuid": "4C4C4544-0047-5310-8054-B9C04F504632",
"groupUpdateProvider": "",
"edrStatus": 0,
"freeDisk": 10328551424,
"snacicenseId": "",
"diskDrive": "C:\\\\",
"osFunction": "Workstation",
"cidsDrvMulfCode": 0,
"mobilePhone": "",
"jobTitle": "",
"lastHeuristicThreatTime": 0,
"osname": "Windows 10",
"winServers": [
"0.0.0.0",
"0.0.0.0"
],
"deploymentMessage": "",
"idsSerialNo": "",
"employeeNumber": "",
"lastSiteId": "C485F8390A0000BD0F806737FA94B6EF",
"uwf": 2,
"currentClientId": "D630A2D10A0000BD3566F8EC3AF38258",
"osbitness": "x64",
"osanguage": "None",
"lastScanTime": 1549277509000,
"dnsServers": [
"10.0.0.190",
"..."
],
"securityVirtualAppliance": "None",
"worstInfectionIdx": "0",
"encryptedDevicePassword": "",
"ptpOnOff": 1,
"kernel": "None",
"svaId": "",
"lastConnectedIpAddr": "1.1.1.1",
"agentVersion": "14.0.1904.0000",
"ipAddresses": [
"10.0.0.40",
"192.168.56.1",
"192.168.184.1"
],
"agentTimeStamp": 1549287166434,
"osfunction": "Workstation",
"osMajor": 10,
"deploymentTargetVersion": "14.0.1904.0000",
"osMinor": 0,
"osFlavorNumber": 126,
"logicalCpus": 0,
"deploymentPreVersion": "",
"hypervisorVendorId": "0",
"fbwf": 2,
"osversion": "10.0",
"email": "",
"vsicStatus": 3,
"lastServerId": "5B0090390A0000BD0EA208CFABAB79BF",
"deleted": 0,
"deploymentStatus": "302449921",
"computerTimeStamp": 1549270030452,
"bwf": 2,
"totalDiskSpace": 121601,
"homePhone": "",
"daOnOff": 1,
"computerDescription": "P-VICTORS",
"pepOnOff": 1,
"bashStatus": 1,
"agentUsn": 4634006,
"osName": "Windows 10",
"patternIdx": "12D025D1F97B4681135C679CFB528DC0",
"employeeStatus": "",
"timeZone": -120,
"rebootRequired": 0,
"subnetMasks": [
"255.255.254.0",
"255.255.255.0",
"255.255.255.0"
],
"minorVersion": 0,
"osservicePack": "",
"lastSiteName": "testSite",
"cidsEngineVersion": "1.1.1.1",
"lastDeploymentTime": 1549269576000,
"isGrace": 0,
"computerUsn": 4628006,
"agentId": "AA2625F10A0000BD3566F8EC8ADC3D2A",
"cidsBrowserFfOnOff": 1,
"domainOrWorkgroup": "SIEMPIFY.OCA",
"lastUpdateTime": 1549287166434,
"loginDomain": "SIEMPIFY.OCA",
"lastServerName": "surajsep",
"contentUpdate": 1,
"writeFiltersStatus": "None",
"infected": 0,
"memory": 16827695104,
"osminor": 0,
"freeMem": 9575374848,
"officePhone": "",
"lastVirusTime": 1530785567000,
"idsVersion": "",
"cidsBrowserIeOnOff": 1,
"publicKey": "BgIAAACkAABSU0ExAAgAAAEAAQBt1Cn6nstqwypo5vUwmPVs+Ebx0JltYQJCHqfuWRhyUqnTyRniQZRCOY92MS2fMS6vouWJx+DMqlu8vbIs3G4nFoSxXAXuPXaafpWObEUhsXrN4Gxt/Rwoi8uOXjODW4kt9FKw9xoVHMquSF/jhobMrcozXTtUf5QRTQoGheRSIOPN+JfjEuT1XAbt2uS+IbX3Sp648yyl94/XI7ZUGHaviq3eaYjK+FMN3S2Uv/i/3uxB+/gOHDHfOsn6wES6HEhN9jzrM3arlZlWXc7783SzUfq8uAZ13cWOPb8BnUKaY2A1r+Ca95dJatvo7pg1flmX4TGT72UOVM7kzI029",
"quarantineDesc": "Host Integrity check passed Requirement: ",
"biosVersion": "DE - 1072009 BIOS Date: 08/26/16 02:41:50 Ver: 1.1.1.1",
"processorClock": 2808,
"rebootReason": "",
"cidsSilentMode": 0,
"creationTime": 1530429396647,
"macAddresses": [
"18-DB-F2-46-23-C0",
"0A-00-27-00-00-15",
"00-50-56-C0-00-01"
],
"idsChecksum": "None",
"operatingSystem": "Windows 10 Enterprise 2015 TSB",
"osmajor": 10,
"virtualizationPlatform": "Unknown",
"deploymentRunningVersion": "14.0.1904.0000",
"physicalCpus": 4,
"osBitness": "x64",
"cidsDefsetVersion": "190201061",
"cidsDrvOnOff": 1,
"computerName": "P-NOYS",
"logonUserName": "johndoe1",
"atpServer": "",
"gateways": [
"10.0.0.138",
"0.0.0.0",
"0.0.0.0"
],
"uniqueId": "9C9850840A0000BD3566F8ECC8417F64",
"department": "",
"isNpvdiClient": 0,
"dhcpServer": "1.1.1.1",
"description": "None",
"osflavorNumber": 126,
"tpmDevice": "0",
"onlineStatus": 1,
"lastDownloadTime": 1549150265991,
"apOnOff": 1,
"fullName": "",
"osVersion": "10.0",
"tmpDevice": "None",
"attributeExtension": "",
"licenseExpiry": 0,
"tamperOnOff": 1,
"osServicePack": "",
"agentType": "105",
"serialNumber": "9GSTPF2",
"osElamStatus": 0,
"installType": "0",
"profileSerialNo": "201D-10/29/2018 21:39:09 743",
"hardwareKey": "36817A7B13C3A6317932AD9819097322",
"firewallOnOff": 1
},
"Entity": "HOST_1"
},
{
"EntityResult": {
"profileVersion": "14.0.1904",
"elamOnOff": 1,
"avEngineOnOff": 1,
"majorVersion": 14,
"profileChecksum": "None",
"atpDeviceId": "",
"processorType": "Intel64 Family 6 Model 78 Stepping 3",
"oslanguage": "None",
"licenseId": "",
"licenseStatus": -1,
"group": {
"domain": {
"id": "163240A90A0000BD1BAAF73394A403B0",
"name": "Default"
},
"fullPathName": "None",
"id": "201DB33F0A0000BD587D90FA64799744",
"name": "My Company\\\\Default Group"
},
"uuid": "4C4C4544-0047-5310-8054-B9C04F504632",
"groupUpdateProvider": "",
"edrStatus": 0,
"freeDisk": 10328551424,
"snacicenseId": "",
"diskDrive": "C:\\\\",
"osFunction": "Workstation",
"cidsDrvMulfCode": 0,
"mobilePhone": "",
"jobTitle": "",
"lastHeuristicThreatTime": 0,
"osname": "Windows 10",
"winServers": [
"0.0.0.0",
"0.0.0.0"
],
"deploymentMessage": "",
"idsSerialNo": "",
"employeeNumber": "",
"lastSiteId": "C485F8390A0000BD0F806737FA94B6EF",
"uwf": 2,
"currentClientId": "D630A2D10A0000BD3566F8EC3AF38258",
"osbitness": "x64",
"osanguage": "None",
"lastScanTime": 1549277509000,
"dnsServers": [
"10.0.0.190",
"..."
],
"securityVirtualAppliance": "None",
"worstInfectionIdx": "0",
"encryptedDevicePassword": "",
"ptpOnOff": 1,
"kernel": "None",
"svaId": "",
"lastConnectedIpAddr": "1.1.1.1",
"agentVersion": "14.0.1904.0000",
"ipAddresses": [
"10.0.0.40",
"192.168.56.1",
"192.168.184.1"
],
"agentTimeStamp": 1549287166434,
"osfunction": "Workstation",
"osMajor": 10,
"deploymentTargetVersion": "14.0.1904.0000",
"osMinor": 0,
"osFlavorNumber": 126,
"logicalCpus": 0,
"deploymentPreVersion": "",
"hypervisorVendorId": "0",
"fbwf": 2,
"osversion": "10.0",
"email": "",
"vsicStatus": 3,
"lastServerId": "5B0090390A0000BD0EA208CFABAB79BF",
"deleted": 0,
"deploymentStatus": "302449921",
"computerTimeStamp": 1549270030452,
"bwf": 2,
"totalDiskSpace": 121601,
"homePhone": "",
"daOnOff": 1,
"computerDescription": "P-VICTORS",
"pepOnOff": 1,
"bashStatus": 1,
"agentUsn": 4634006,
"osName": "Windows 10",
"patternIdx": "12D025D1F97B4681135C679CFB528DC0",
"employeeStatus": "",
"timeZone": -120,
"rebootRequired": 0,
"subnetMasks": [
"255.255.254.0",
"255.255.255.0",
"255.255.255.0"
],
"minorVersion": 0,
"osservicePack": "",
"lastSiteName": "testSite",
"cidsEngineVersion": "1.1.1.1",
"lastDeploymentTime": 1549269576000,
"isGrace": 0,
"computerUsn": 4628006,
"agentId": "AA2625F10A0000BD3566F8EC8ADC3D2A",
"cidsBrowserFfOnOff": 1,
"domainOrWorkgroup": "SIEMPIFY.OCA",
"lastUpdateTime": 1549287166434,
"loginDomain": "SIEMPIFY.OCA",
"lastServerName": "surajsep",
"contentUpdate": 1,
"writeFiltersStatus": "None",
"infected": 0,
"memory": 16827695104,
"osminor": 0,
"freeMem": 9575374848,
"officePhone": "",
"lastVirusTime": 1530785567000,
"idsVersion": "",
"cidsBrowserIeOnOff": 1,
"publicKey": "BgIAAACkAABSU0ExAAgAAAEAAQBt1Cn6nstqwypo5vUwmPVs+Ebx0JltYQJCHqfuWRhyUqnTyRniQZRCOY92MS2fMS6vouWJx+DMqlu8vbIs3G4nFoSxXAXuPXaafpWObEUhsXrN4Gxt/Rwoi8uOXjODW4kt9FKw9xoVHMquSF/jhobMrcozXTtUf5QRTQoGheRSIOPN+JfjEuT1XAbt2uS+IbX3Sp648yyl94/XI7ZUGHaviq3eaYjK+FMN3S2Uv/i/3uxB+/gOHDHfOsn6wES6HEhN9jzrM3arlZlWXc7783SzUfq8uAZ13cWOPb8BnUKaY2A1r+Ca95dJatvo7pg1flmX4TGT72UOVM7kzI029",
"quarantineDesc": "Host Integrity check passed Requirement: ",
"biosVersion": "DE - 1072009 BIOS Date: 08/26/16 02:41:50 Ver: 1.1.1.1",
"processorClock": 2808,
"rebootReason": "",
"cidsSilentMode": 0,
"creationTime": 1530429396647,
"macAddresses": [
"18-DB-F2-46-23-C0",
"0A-00-27-00-00-15",
"00-50-56-C0-00-01"
],
"idsChecksum": "None",
"operatingSystem": "Windows 10 Enterprise 2015 TSB",
"osmajor": 10,
"virtualizationPlatform": "Unknown",
"deploymentRunningVersion": "14.0.1904.0000",
"physicalCpus": 4,
"osBitness": "x64",
"cidsDefsetVersion": "190201061",
"cidsDrvOnOff": 1,
"computerName": "P-NOYS",
"logonUserName": "johndoe1",
"atpServer": "",
"gateways": [
"10.0.0.138",
"0.0.0.0",
"0.0.0.0"
],
"uniqueId": "9C9850840A0000BD3566F8ECC8417F64",
"department": "",
"isNpvdiClient": 0,
"dhcpServer": "1.1.1.1",
"description": "None",
"osflavorNumber": 126,
"tpmDevice": "0",
"onlineStatus": 1,
"lastDownloadTime": 1549150265991,
"apOnOff": 1,
"fullName": "",
"osVersion": "10.0",
"tmpDevice": "None",
"attributeExtension": "",
"licenseExpiry": 0,
"tamperOnOff": 1,
"osServicePack": "",
"agentType": "105",
"serialNumber": "9GSTPF2",
"osElamStatus": 0,
"installType": "0",
"profileSerialNo": "201D-10/29/2018 21:39:09 743",
"hardwareKey": "36817A7B13C3A6317932AD9819097322",
"firewallOnOff": 1
},
"Entity": "HOST_2"
}
]
Membuat Daftar Grup
Deskripsi
Mencantumkan semua grup yang dikonfigurasi di perangkat tertentu.
Parameter
T/A
Kasus penggunaan
T/A
Run On
Tindakan ini dijalankan di semua entity.
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| grup | T/A | T/A |
Hasil JSON
[
{
"policyDate": 1540849149743,
"domain": {
"id": "163240A90A0000BD1BAAF73394A403B0",
"name": "Default"
},
"policySerialNumber": "201D-10/29/2018 21:39:09 743",
"description": "",
"created": 1480348907173,
"customIpsNumber": "",
"fullPathName": "My Company\\\\Default Group",
"childGroups": "None",
"numberOfPhysicalComputers": 1,
"numberOfRegisteredUsers": 1,
"createdBy": "AF3C39A10A320801000000DBF200C60A",
"lastModified": 1480348907173,
"id": "201DB33F0A0000BD587D90FA64799744",
"policyInheritanceEnabled": "False",
"name": "Default Group"
},
{
"policyDate": 1540849149743,
"domain": {
"id": "163240A90A0000BD1BAAF73394A403B0",
"name": "Default"
},
"policySerialNumber": "E25C-10/29/2018 21:39:09 743",
"description": "",
"created": 1480348907173,
"customIpsNumber": "",
"fullPathName": "My Company",
"childGroups": "None",
"numberOfPhysicalComputers": 0,
"numberOfRegisteredUsers": 0,
"createdBy": "AF3C39A10A320801000000DBF200C60A",
"lastModified": 1480348907173,
"id": "E25CFEAB0A0000BD6CF5CB6BC7A8505E",
"policyInheritanceEnabled": "False",
"name": "My Company"
}
]
Ping
Deskripsi
Uji Konektivitas.
Parameter
T/A
Kasus penggunaan
T/A
Run On
Tindakan ini dijalankan di semua entity.
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| berhasil | Benar/Salah | success:False |
Hasil JSON
N/A
Endpoint Karantina
Deskripsi
Mengarantina endpoint.
Parameter
T/A
Kasus penggunaan
T/A
Run On
Tindakan ini berjalan di entity berikut:
- Alamat IP
- Hostname
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| berhasil | Benar/Salah | success:False |
Hasil JSON
N/A
Endpoint Pemindaian
Deskripsi
Pindai endpoint.
Parameter
| Parameter | Jenis | Nilai Default | Deskripsi |
|---|---|---|---|
| Jenis Pemindaian | List` | ScanNow_Full | Jenis pemindaian yang akan dilakukan. ScanNow_Full = Pemindaian menyeluruh, ScanNow_Quick = pemindaian cepat, ScanNow_Custom = pemindaian kustom. |
Kasus penggunaan
T/A
Run On
Tindakan ini berjalan di entity berikut:
- Alamat IP
- Hostname
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| berhasil | Benar/Salah | success:False |
Hasil JSON
N/A
Hash Berhenti Memblokir
Deskripsi
Membuka blokir hash tertentu.
Parameter
T/A
Kasus penggunaan
T/A
Run On
Tindakan ini dijalankan pada entity Filehash.
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| berhasil | Benar/Salah | success:False |
Hasil JSON
N/A
Endpoint Unquarantine
Deskripsi
Membatalkan karantina endpoint.
Parameter
T/A
Kasus penggunaan
T/A
Run On
Tindakan ini berjalan di entity berikut:
- Alamat IP
- Hostname
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| berhasil | Benar/Salah | success:False |
Hasil JSON
N/A
Endpoint Pembaruan dan Pemindaian
Deskripsi
Perbarui dan pindai endpoint.
Parameter
T/A
Kasus penggunaan
T/A
Run On
Tindakan ini berjalan di entity berikut:
- Alamat IP
- Hostname
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| berhasil | Benar/Salah | success:False |
Hasil JSON
N/A
Memperbarui Endpoint
Deskripsi
Perbarui endpoint.
Parameter
T/A
Kasus penggunaan
T/A
Run On
Tindakan ini berjalan di entity berikut:
- Alamat IP
- Hostname
Hasil Tindakan
Pengayaan Entity
T/A
Insight
T/A
Hasil Skrip
| Nama Hasil Skrip | Opsi Nilai | Contoh |
|---|---|---|
| berhasil | Benar/Salah | success:False |
Hasil JSON
N/A
Perlu bantuan lain? Dapatkan jawaban dari anggota Komunitas dan profesional Google SecOps.