forked from demisto/content
/
Silverfort.yml
executable file
·127 lines (127 loc) · 3.4 KB
/
Silverfort.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
category: Authentication & Identity Management
commonfields:
id: Silverfort
version: -1
configuration:
- display: Server URL
name: url
required: true
type: 0
- additionalinfo: Generate your unique API token from the tower
display: APIKEY
name: apikey
required: true
type: 4
- display: Trust any certificate (not secure)
name: insecure
type: 8
required: false
description: Use the Silverfort integration to get and update Silverfort risk severity.
display: Silverfort
name: Silverfort
script:
commands:
- arguments:
- description: The user principal name.
name: upn
- description: The email address.
name: email
- description: The sam account.
name: sam_account
- description: The domain.
name: domain
description: User risk commands - get the user entity risk.
name: silverfort-get-user-risk
outputs:
- contextPath: Silverfort.UserRisk.Risk
description: The risk level.
type: String
- contextPath: Silverfort.UserRisk.Reasons
description: The reasons for the risk.
type: Unknown
- contextPath: Silverfort.UserRisk.UPN
description: The user principal name.
type: String
- arguments:
- description: The hostname.
name: resource_name
required: true
- description: The domain.
name: domain_name
required: true
description: Gets the resource entity risk information.
name: silverfort-get-resource-risk
outputs:
- contextPath: Silverfort.ResourceRisk.Risk
description: The risk level.
type: String
- contextPath: Silverfort.ResourceRisk.Reasons
description: The reasons for the risk.
type: Unknown
- contextPath: Silverfort.ResourceRisk.ResourceName
description: The hostname.
type: String
- arguments:
- description: The user principal name.
name: upn
- description: The risk name.
name: risk_name
required: true
- auto: PREDEFINED
description: The severity.
name: severity
predefined:
- low
- medium
- high
- critical
required: true
- description: The number of hours that the risk will be valid for.
name: valid_for
required: true
- description: The risk description.
name: description
required: true
- description: The email address.
name: email
- description: The sam account.
name: sam_account
- description: The domain.
name: domain
description: Updates the user entity risk.
name: silverfort-update-user-risk
- arguments:
- description: The hostname.
name: resource_name
required: true
- description: The domain name.
name: domain_name
required: true
- description: The risk name.
name: risk_name
required: true
- auto: PREDEFINED
description: The severity.
name: severity
predefined:
- low
- medium
- high
- critical
required: true
- description: The number of hours the severity will be relevant for.
name: valid_for
required: true
- description: A short description about the risk.
name: description
required: true
description: Update the resource entity risk.
name: silverfort-update-resource-risk
dockerimage: demisto/pyjwt3:1.0.0.66845
runonce: false
script: '-'
subtype: python3
type: python
fromversion: 5.0.0
tests:
- No tests (auto formatted)