Upsert (create or update) asset criticality record
editUpsert (create or update) asset criticality record
editCreate or update an asset criticality record.
If an asset criticality record already exists for the entity specified in the request, this API overwrites that record with the specified value.
If an asset criticality record doesn’t exist for the specified entity, a new record is created.
Request URL
editPOST <kibana host>:<port>/api/asset_criticality
Request body
editA JSON object defining the asset criticality record.
Name | Type | Description | Required |
---|---|---|---|
|
String |
The field that contains the entity ID. This must be either |
Yes |
|
String |
The ID (host name or user name) of the entity specified in the |
Yes |
|
String |
The asset criticality level to assign, which must be one of the following:
For example, you can assign |
Yes |
Example requests
editPOST /api/asset_criticality { "id_field": "host.name", "id_value": "my_host", "criticality_level": "high_impact" }
Response code
edit-
200
- Indicates a successful call.
Example response
edit{ "id_field": "host.name", "id_value": "my_host", "criticality_level": "high_impact", "@timestamp": "2024-08-02T11:15:34.290Z" }