-
Notifications
You must be signed in to change notification settings - Fork 62
Edit FalconSvExclusion
bk-cs edited this page Apr 29, 2023
·
21 revisions
Modify a Sensor Visibility exclusion
Requires 'Sensor Visibility Exclusions: Write'.
Name | Type | Description | Min | Max | Allowed | Pipeline | PipelineByName |
---|---|---|---|---|---|---|---|
Value | String | RegEx pattern value | X | ||||
GroupId | Object[] | Host group identifier or 'all' to apply to all hosts | X | ||||
Comment | String | Audit log comment | X | ||||
Id | String | Exclusion identifier | X | X |
Edit-FalconSvExclusion [[-Value] <String>] [[-GroupId] <Object[]>] [[-Comment] <String>] [-Id] <String> [-WhatIf] [-Confirm] [<CommonParameters>]
PATCH /policy/entities/sv-exclusions/v1
updateSensorVisibilityExclusionsV1
Edit-FalconSvExclusion -Id <id> -Value '/foochanged*'
See Modify all Sensor Visibility exclusions to include an additional Host Group.
2023-04-25: PSFalcon v2.2.5
- Using PSFalcon
-
Commands and Permissions
- Configuration Import/Export
- Container Security
- Detection and Prevention Policies
- Discover for Cloud and Containers
- Discover
- Event Streams
- Falcon Complete Dashboards
- Falcon Complete Message Center
- Falcon Data Replicator
- Falcon Intelligence
- Falcon Intelligence Recon
- Falcon OverWatch Dashboards
- Falcon Sandbox
- FileVantage
- Firewall Management
- Flight Control
- Horizon
- Host and Host Group Management
- Identity Protection
- Image Assessment
- Incident and Detection Monitoring
- Installation Tokens
- Kubernetes Protection
- MalQuery
- Mobile Host Enrollment
- On-Demand Scanning
- Quarantine
- Real-time Response
- Real-time Response Policy
- Scheduled Reports and Searches
- Sensor Download
- Sensor Update Policy
- Spotlight
- Tailored Intelligence
- Third-party ingestion
- USB Device Control Policy
- Users and Roles
- Zero Trust Assessment
- Examples
-
CrowdStrike SDKs
- PSFalcon - PowerShell
- FalconPy - Python 3
- goFalcon - Go
- Rusty Falcon - Rust