-
Notifications
You must be signed in to change notification settings - Fork 72
Edit FalconDiscoverAwsAccount
bk-cs edited this page Apr 28, 2023
·
18 revisions
Modify a Falcon Discover for Cloud AWS account
Requires 'AWS accounts: Write'.
Name | Type | Description | Min | Max | Allowed | Pipeline | PipelineByName |
---|---|---|---|---|---|---|---|
ExternalId | String | AWS account identifier with cross-account IAM role access | X | ||||
IamRoleArn | String | Full ARN of the IAM role created in the AWS account to control access | X | ||||
CloudtrailBucketOwnerId | String | AWS account identifier containing cloudtrail logs | X | ||||
CloudtrailBucketRegion | String | AWS region where the account containing cloudtrail logs resides | X | ||||
RateLimitTime | Int64 | Number of seconds between requests defined by 'RateLimitReq' | X | ||||
RateLimitReq | Int32 | Maximum number of requests within 'RateLimitTime' | X | ||||
Id | String | AWS account identifier | X |
Edit-FalconDiscoverAwsAccount [[-ExternalId] <String>] [[-IamRoleArn] <String>] [[-CloudtrailBucketOwnerId] <String>] [[-CloudtrailBucketRegion] <String>] [[-RateLimitTime] <Int64>] [[-RateLimitReq] <Int32>] [-Id] <String> [-WhatIf] [-Confirm] [<CommonParameters>]
PATCH /cloud-connect-aws/entities/accounts/v1
Edit-FalconDiscoverAwsAccount -Id <id> -ExternalId 'fsdfk230fsdk' -CloudtrailBucketOwnerId '222222222222'
2023-04-25: PSFalcon v2.2.5
- Using PSFalcon
-
Commands by Permission
- Actors (Falcon Intelligence)
- Alerts
- API integrations
- App Logs
- Channel File Control Settings
- Configuration Assessment
- Content Update Policies
- Correlation Rules
- CSPM registration
- Custom IOA rules
- Detections
- Device Content
- Device control policies
- Event streams
- Falcon Complete Dashboards
- Falcon Container Image
- Falcon Data Replicator
- Falcon Discover
- Falcon FileVantage
- Falcon FileVantage Content
- Firewall management
- Flight Control
- Host groups
- Host Migration
- Hosts
- Identity Protection Entities
- Identity Protection GraphQL
- Identity Protection Policy Rules
- Incidents
- Indicators (Falcon Intelligence)
- Installation tokens
- Installation token settings
- IOA Exclusions
- IOC Manager APIs
- IOCs
- Kubernetes Protection
- Machine Learning exclusions
- MalQuery
- Malware Families (Falcon Intelligence)
- Message Center
- Mobile Enrollment
- Monitoring rules (Falcon Intelligence Recon)
- On demand scans (ODS)
- OverWatch Dashboard
- Prevention Policies
- Quarantined Files
- QuickScan Pro
- Real time response
- Real time response (admin)
- Reports (Falcon Intelligence)
- Response policies
- Rules (Falcon Intelligence)
- Sample uploads
- Sandbox (Falcon Intelligence)
- Scheduled Reports
- Sensor Download
- Sensor update policies
- Sensor Usage
- Sensor Visibility Exclusions
- Snapshot
- Snapshot Scanner Image Download
- Tailored Intelligence
- Threatgraph
- User management
- Vulnerabilities
- Vulnerabilities (Falcon Intelligence)
- Workflow
- Zero Trust Assessment
- Other Commands
- Examples
-
CrowdStrike SDKs
- FalconPy - Python 3
- goFalcon - Go
- Rusty Falcon - Rust