Docs Home
These are the docs for Azure Native v2. We recommenend using the latest version, Azure Native v3.
Azure Native v2 v2.90.0 published on Thursday, Mar 27, 2025 by Pulumi
azure-native-v2.securityinsights.FusionAlertRule
Explore with Pulumi AI
These are the docs for Azure Native v2. We recommenend using the latest version, Azure Native v3.
Azure Native v2 v2.90.0 published on Thursday, Mar 27, 2025 by Pulumi
- Example Usage
- Creates or updates a Fusion alert rule.
- Creates or updates a MicrosoftSecurityIncidentCreation rule.
- Creates or updates a Scheduled alert rule.
- Create FusionAlertRule Resource
- Constructor syntax
- Constructor example
- FusionAlertRule Resource Properties
- Inputs
- Outputs
- Supporting Types
- Import
- Package Details
Represents Fusion alert rule. Azure REST API version: 2023-02-01. Prior API version in Azure Native 1.x: 2020-01-01.
Example Usage
Creates or updates a Fusion alert rule.
Creates or updates a MicrosoftSecurityIncidentCreation rule.
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var fusionAlertRule = new AzureNative.SecurityInsights.FusionAlertRule("fusionAlertRule", new()
{
ResourceGroupName = "myRg",
RuleId = "microsoftSecurityIncidentCreationRuleExample",
WorkspaceName = "myWorkspace",
});
});
package main
import (
securityinsights "github.com/pulumi/pulumi-azure-native-sdk/securityinsights/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := securityinsights.NewFusionAlertRule(ctx, "fusionAlertRule", &securityinsights.FusionAlertRuleArgs{
ResourceGroupName: pulumi.String("myRg"),
RuleId: pulumi.String("microsoftSecurityIncidentCreationRuleExample"),
WorkspaceName: pulumi.String("myWorkspace"),
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.securityinsights.FusionAlertRule;
import com.pulumi.azurenative.securityinsights.FusionAlertRuleArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var fusionAlertRule = new FusionAlertRule("fusionAlertRule", FusionAlertRuleArgs.builder()
.resourceGroupName("myRg")
.ruleId("microsoftSecurityIncidentCreationRuleExample")
.workspaceName("myWorkspace")
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const fusionAlertRule = new azure_native.securityinsights.FusionAlertRule("fusionAlertRule", {
resourceGroupName: "myRg",
ruleId: "microsoftSecurityIncidentCreationRuleExample",
workspaceName: "myWorkspace",
});
import pulumi
import pulumi_azure_native as azure_native
fusion_alert_rule = azure_native.securityinsights.FusionAlertRule("fusionAlertRule",
resource_group_name="myRg",
rule_id="microsoftSecurityIncidentCreationRuleExample",
workspace_name="myWorkspace")
resources:
fusionAlertRule:
type: azure-native:securityinsights:FusionAlertRule
properties:
resourceGroupName: myRg
ruleId: microsoftSecurityIncidentCreationRuleExample
workspaceName: myWorkspace
Creates or updates a Scheduled alert rule.
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var fusionAlertRule = new AzureNative.SecurityInsights.FusionAlertRule("fusionAlertRule", new()
{
ResourceGroupName = "myRg",
RuleId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5",
WorkspaceName = "myWorkspace",
});
});
package main
import (
securityinsights "github.com/pulumi/pulumi-azure-native-sdk/securityinsights/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := securityinsights.NewFusionAlertRule(ctx, "fusionAlertRule", &securityinsights.FusionAlertRuleArgs{
ResourceGroupName: pulumi.String("myRg"),
RuleId: pulumi.String("73e01a99-5cd7-4139-a149-9f2736ff2ab5"),
WorkspaceName: pulumi.String("myWorkspace"),
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.securityinsights.FusionAlertRule;
import com.pulumi.azurenative.securityinsights.FusionAlertRuleArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var fusionAlertRule = new FusionAlertRule("fusionAlertRule", FusionAlertRuleArgs.builder()
.resourceGroupName("myRg")
.ruleId("73e01a99-5cd7-4139-a149-9f2736ff2ab5")
.workspaceName("myWorkspace")
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const fusionAlertRule = new azure_native.securityinsights.FusionAlertRule("fusionAlertRule", {
resourceGroupName: "myRg",
ruleId: "73e01a99-5cd7-4139-a149-9f2736ff2ab5",
workspaceName: "myWorkspace",
});
import pulumi
import pulumi_azure_native as azure_native
fusion_alert_rule = azure_native.securityinsights.FusionAlertRule("fusionAlertRule",
resource_group_name="myRg",
rule_id="73e01a99-5cd7-4139-a149-9f2736ff2ab5",
workspace_name="myWorkspace")
resources:
fusionAlertRule:
type: azure-native:securityinsights:FusionAlertRule
properties:
resourceGroupName: myRg
ruleId: 73e01a99-5cd7-4139-a149-9f2736ff2ab5
workspaceName: myWorkspace
Create FusionAlertRule Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new FusionAlertRule(name: string, args: FusionAlertRuleArgs, opts?: CustomResourceOptions);@overload
def FusionAlertRule(resource_name: str,
args: FusionAlertRuleArgs,
opts: Optional[ResourceOptions] = None)
@overload
def FusionAlertRule(resource_name: str,
opts: Optional[ResourceOptions] = None,
alert_rule_template_name: Optional[str] = None,
enabled: Optional[bool] = None,
resource_group_name: Optional[str] = None,
workspace_name: Optional[str] = None,
rule_id: Optional[str] = None)func NewFusionAlertRule(ctx *Context, name string, args FusionAlertRuleArgs, opts ...ResourceOption) (*FusionAlertRule, error)public FusionAlertRule(string name, FusionAlertRuleArgs args, CustomResourceOptions? opts = null)public FusionAlertRule(String name, FusionAlertRuleArgs args)
public FusionAlertRule(String name, FusionAlertRuleArgs args, CustomResourceOptions options)
type: azure-native:securityinsights:FusionAlertRule
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name
This property is required. string - The unique name of the resource.
- args
This property is required. FusionAlertRuleArgs - The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name
This property is required. str - The unique name of the resource.
- args
This property is required. FusionAlertRuleArgs - The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name
This property is required. string - The unique name of the resource.
- args
This property is required. FusionAlertRuleArgs - The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name
This property is required. string - The unique name of the resource.
- args
This property is required. FusionAlertRuleArgs - The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name
This property is required. String - The unique name of the resource.
- args
This property is required. FusionAlertRuleArgs - The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var fusionAlertRuleResource = new AzureNative.Securityinsights.FusionAlertRule("fusionAlertRuleResource", new()
{
AlertRuleTemplateName = "string",
Enabled = false,
Kind = "string",
ResourceGroupName = "string",
WorkspaceName = "string",
RuleId = "string",
});
example, err := securityinsights.NewFusionAlertRule(ctx, "fusionAlertRuleResource", &securityinsights.FusionAlertRuleArgs{
AlertRuleTemplateName: "string",
Enabled: false,
Kind: "string",
ResourceGroupName: "string",
WorkspaceName: "string",
RuleId: "string",
})
var fusionAlertRuleResource = new FusionAlertRule("fusionAlertRuleResource", FusionAlertRuleArgs.builder()
.alertRuleTemplateName("string")
.enabled(false)
.kind("string")
.resourceGroupName("string")
.workspaceName("string")
.ruleId("string")
.build());
fusion_alert_rule_resource = azure_native.securityinsights.FusionAlertRule("fusionAlertRuleResource",
alert_rule_template_name=string,
enabled=False,
kind=string,
resource_group_name=string,
workspace_name=string,
rule_id=string)
const fusionAlertRuleResource = new azure_native.securityinsights.FusionAlertRule("fusionAlertRuleResource", {
alertRuleTemplateName: "string",
enabled: false,
kind: "string",
resourceGroupName: "string",
workspaceName: "string",
ruleId: "string",
});
type: azure-native:securityinsights:FusionAlertRule
properties:
alertRuleTemplateName: string
enabled: false
kind: string
resourceGroupName: string
ruleId: string
workspaceName: string
FusionAlertRule Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The FusionAlertRule resource accepts the following input properties:
- Alert
Rule Template Name This property is required. string - The Name of the alert rule template used to create this rule.
- Enabled
This property is required. bool - Determines whether this alert rule is enabled or disabled.
- Resource
Group Name stringThis property is required. 
Changes to this property will trigger replacement. - The name of the resource group. The name is case insensitive.
- Workspace
Name stringThis property is required. Changes to this property will trigger replacement. - The name of the workspace.
- Rule
Id - Alert rule ID
- Alert
Rule Template Name This property is required. string - The Name of the alert rule template used to create this rule.
- Enabled
This property is required. bool - Determines whether this alert rule is enabled or disabled.
- Resource
Group Name stringThis property is required. Changes to this property will trigger replacement. - The name of the resource group. The name is case insensitive.
- Workspace
Name stringThis property is required. Changes to this property will trigger replacement. - The name of the workspace.
- Rule
Id - Alert rule ID
- alert
Rule Template Name This property is required. String - The Name of the alert rule template used to create this rule.
- enabled
This property is required. Boolean - Determines whether this alert rule is enabled or disabled.
- resource
Group Name StringThis property is required. Changes to this property will trigger replacement. - The name of the resource group. The name is case insensitive.
- workspace
Name StringThis property is required. Changes to this property will trigger replacement. - The name of the workspace.
- rule
Id - Alert rule ID
- alert
Rule Template Name This property is required. string - The Name of the alert rule template used to create this rule.
- enabled
This property is required. boolean - Determines whether this alert rule is enabled or disabled.
- resource
Group Name stringThis property is required. Changes to this property will trigger replacement. - The name of the resource group. The name is case insensitive.
- workspace
Name stringThis property is required. Changes to this property will trigger replacement. - The name of the workspace.
- rule
Id - Alert rule ID
- alert_
rule_ template_ name This property is required. str - The Name of the alert rule template used to create this rule.
- enabled
This property is required. bool - Determines whether this alert rule is enabled or disabled.
- resource_
group_ name strThis property is required. Changes to this property will trigger replacement. - The name of the resource group. The name is case insensitive.
- workspace_
name strThis property is required. Changes to this property will trigger replacement. - The name of the workspace.
- rule_
id - Alert rule ID
- alert
Rule Template Name This property is required. String - The Name of the alert rule template used to create this rule.
- enabled
This property is required. Boolean - Determines whether this alert rule is enabled or disabled.
- resource
Group Name StringThis property is required. Changes to this property will trigger replacement. - The name of the resource group. The name is case insensitive.
- workspace
Name StringThis property is required. Changes to this property will trigger replacement. - The name of the workspace.
- rule
Id - Alert rule ID
Outputs
All input properties are implicitly available as output properties. Additionally, the FusionAlertRule resource produces the following output properties:
- Description string
- The description of the alert rule.
- Display
Name string - The display name for alerts created by this alert rule.
- Id string
- The provider-assigned unique ID for this managed resource.
- Last
Modified stringUtc - The last time that this alert has been modified.
- Name string
- The name of the resource
- Severity string
- The severity for alerts created by this alert rule.
- System
Data Pulumi.Azure Native. Security Insights. Outputs. System Data Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- Tactics List<string>
- The tactics of the alert rule
- Techniques List<string>
- The techniques of the alert rule
- Type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- Etag string
- Etag of the azure resource
- Description string
- The description of the alert rule.
- Display
Name string - The display name for alerts created by this alert rule.
- Id string
- The provider-assigned unique ID for this managed resource.
- Last
Modified stringUtc - The last time that this alert has been modified.
- Name string
- The name of the resource
- Severity string
- The severity for alerts created by this alert rule.
- System
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- Tactics []string
- The tactics of the alert rule
- Techniques []string
- The techniques of the alert rule
- Type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- Etag string
- Etag of the azure resource
- description String
- The description of the alert rule.
- display
Name String - The display name for alerts created by this alert rule.
- id String
- The provider-assigned unique ID for this managed resource.
- last
Modified StringUtc - The last time that this alert has been modified.
- name String
- The name of the resource
- severity String
- The severity for alerts created by this alert rule.
- system
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- tactics List<String>
- The tactics of the alert rule
- techniques List<String>
- The techniques of the alert rule
- type String
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- etag String
- Etag of the azure resource
- description string
- The description of the alert rule.
- display
Name string - The display name for alerts created by this alert rule.
- id string
- The provider-assigned unique ID for this managed resource.
- last
Modified stringUtc - The last time that this alert has been modified.
- name string
- The name of the resource
- severity string
- The severity for alerts created by this alert rule.
- system
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- tactics string[]
- The tactics of the alert rule
- techniques string[]
- The techniques of the alert rule
- type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- etag string
- Etag of the azure resource
- description str
- The description of the alert rule.
- display_
name str - The display name for alerts created by this alert rule.
- id str
- The provider-assigned unique ID for this managed resource.
- last_
modified_ strutc - The last time that this alert has been modified.
- name str
- The name of the resource
- severity str
- The severity for alerts created by this alert rule.
- system_
data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- tactics Sequence[str]
- The tactics of the alert rule
- techniques Sequence[str]
- The techniques of the alert rule
- type str
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- etag str
- Etag of the azure resource
- description String
- The description of the alert rule.
- display
Name String - The display name for alerts created by this alert rule.
- id String
- The provider-assigned unique ID for this managed resource.
- last
Modified StringUtc - The last time that this alert has been modified.
- name String
- The name of the resource
- severity String
- The severity for alerts created by this alert rule.
- system
Data Property Map - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- tactics List<String>
- The tactics of the alert rule
- techniques List<String>
- The techniques of the alert rule
- type String
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- etag String
- Etag of the azure resource
Supporting Types
SystemDataResponse, SystemDataResponseArgs
, SystemDataResponseArgs
- Created
At string - The timestamp of resource creation (UTC).
- Created
By string - The identity that created the resource.
- Created
By stringType - The type of identity that created the resource.
- Last
Modified stringAt - The timestamp of resource last modification (UTC)
- Last
Modified stringBy - The identity that last modified the resource.
- Last
Modified stringBy Type - The type of identity that last modified the resource.
- Created
At string - The timestamp of resource creation (UTC).
- Created
By string - The identity that created the resource.
- Created
By stringType - The type of identity that created the resource.
- Last
Modified stringAt - The timestamp of resource last modification (UTC)
- Last
Modified stringBy - The identity that last modified the resource.
- Last
Modified stringBy Type - The type of identity that last modified the resource.
- created
At String - The timestamp of resource creation (UTC).
- created
By String - The identity that created the resource.
- created
By StringType - The type of identity that created the resource.
- last
Modified StringAt - The timestamp of resource last modification (UTC)
- last
Modified StringBy - The identity that last modified the resource.
- last
Modified StringBy Type - The type of identity that last modified the resource.
- created
At string - The timestamp of resource creation (UTC).
- created
By string - The identity that created the resource.
- created
By stringType - The type of identity that created the resource.
- last
Modified stringAt - The timestamp of resource last modification (UTC)
- last
Modified stringBy - The identity that last modified the resource.
- last
Modified stringBy Type - The type of identity that last modified the resource.
- created_
at str - The timestamp of resource creation (UTC).
- created_
by str - The identity that created the resource.
- created_
by_ strtype - The type of identity that created the resource.
- last_
modified_ strat - The timestamp of resource last modification (UTC)
- last_
modified_ strby - The identity that last modified the resource.
- last_
modified_ strby_ type - The type of identity that last modified the resource.
- created
At String - The timestamp of resource creation (UTC).
- created
By String - The identity that created the resource.
- created
By StringType - The type of identity that created the resource.
- last
Modified StringAt - The timestamp of resource last modification (UTC)
- last
Modified StringBy - The identity that last modified the resource.
- last
Modified StringBy Type - The type of identity that last modified the resource.
Import
An existing resource can be imported using its type token, name, and identifier, e.g.
$ pulumi import azure-native:securityinsights:FusionAlertRule 73e01a99-5cd7-4139-a149-9f2736ff2ab5 /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/alertRules/{ruleId}
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- azure-native-v2 pulumi/pulumi-azure-native
- License
- Apache-2.0
These are the docs for Azure Native v2. We recommenend using the latest version, Azure Native v3.
Azure Native v2 v2.90.0 published on Thursday, Mar 27, 2025 by Pulumi
- Example Usage
- Creates or updates a Fusion alert rule.
- Creates or updates a MicrosoftSecurityIncidentCreation rule.
- Creates or updates a Scheduled alert rule.
- Create FusionAlertRule Resource
- Constructor syntax
- Constructor example
- FusionAlertRule Resource Properties
- Inputs
- Outputs
- Supporting Types
- Import
- Package Details