Oracle Cloud Infrastructure Documentation

Listing OCI Detector Recipes and Getting Their Details

Sort and filter the list of available OCI detector recipes in Cloud Guard, and view details for a specific detector recipe.

Note

Details for a Security Zone detector recipe can be viewed only from the detail page of the target to which the detector is attached. See Listing OCI Targets and Getting Their Details.
    1. Open the navigation menu and click Identity & Security. Under Cloud Guard, click Recipes.
    2. On the Recipes page, click Detector recipes.

      On the Detector recipes page, the column headers provide summary information about the detector recipes:

      • Recipe name: The name of the detector recipe.
      • Oracle managed: Indicates whether the detector recipe is Oracle-managed.
      • Type: Indicates whether the detector recipe is a Standard or Enterprise level recipe.
      • Created: The date and time when the recipe was created.
    3. To ensure the page displays all available items in the list, under Scope, set the value of Compartment to the tenancy's root compartment and select Include child compartments.
    4. To filter the list, you can:
      • In the Filter by … name box at top right, enter a text string.

        Only names that contain that text that you type, anywhere in the name, now appear in the list.

      • Under Scope:
        • Select a different Compartment.
        • If you also want detector recipes attached to compartments below the selected compartment to appear in the list, select Include child compartments.
      • To filter the list by tags, follow these steps:
        1. To the right of Tag filters in the lower-left side of the page, click the add link.
        2. In the Apply tag filter dialog box, select a Tag namespace. If you want to manually enter a tag, select None (free-form tag).
        3. Select or enter a Tag key.
        4. For Tag value, select one of the following options:
          • Select Match any value if you want any tag value to count as a match.
          • Select Specify matching values and manually enter values, separated by commas, if you want only the values that you enter to count as a match.
          • To add more values for this tag, click the plus sign (+).
        5. Click Apply filter.
    5. Look for rows where the entry in the Type column is Activity, Configuration, or Threat.
    6. To view the details page for a specific item, click its link in the Recipe name column.
    7. To view the OCID for the recipe, click Show next to OCID row on the Details tab.
    8. If the recipe is user-managed, view tags that have been assigned to the recipe by clicking the Tags tab.

      Tagging isn't supported in Oracle-managed recipes.

    9. In the Detector rules section, use the column headers to identify the information shown:
      • Detector rule: The name of each detector rule in the recipe.
      • Risk level: The severity of the risk posed if the rule is triggered (not present for Threat Detector recipes).
      • Status: Each rule can be Enabled or Disabled independently.
      • Settings configured: Indicates whether settings configured are configured for the rule.
      • Conditional group: Indicates whether conditions are configured for the rule.
    10. To show summary information for a detector rule, click the Expand icon Image of Expand icon at the right end of its row.
    11. To show configuration information for a detector rule, open its Actions menu Image of Action menu, and select Edit.
      For recommended settings, see the reference for the detector recipe type:

  • For a complete list of flags and variable options for CLI commands, see the Command Line Reference.

    Detector Recipes

    Use the oci cloud-guard detector-recipe get command and required parameters to get a specific detector recipe:

    oci cloud-guard detector-recipe get --detector-recipe-id <detector_recipe_ocid> [OPTIONS]

    Use the oci cloud-guard detector-recipe list command and required parameters to list all detector recipes:

    oci cloud-guard detector-recipe list --compartment-id, -c <compartment_ocid> [OPTIONS]

    Detector Recipe Rules

    Use the oci cloud-guard detector-recipe-detector-rule get command and required parameters to get a specific rule in a detector recipe:

    oci cloud-guard detector-recipe-detector-rule get --detector-recipe-id <detector_recipe_ocid> --detector-rule-id <detector_rule_id> [OPTIONS]

    Use the oci cloud-guard detector-recipe-detector-rule list command and required parameters to list all the rules in a detector recipe:

    oci cloud-guard detector-recipe-detector-rule list --compartment-id, -c <compartment_ocid> --detector-recipe-id <detector_recipe_ocid> [OPTIONS]

  • Detector Recipes

    Run the GetDetectorRecipe operation to get a detector recipe.

    Run the ListDetectorRecipes operation to list detector recipes.

    Detector Recipe Rules

    Run the GetDetectorRecipeDetectorRule operation to get a specific detector recipe.

    Run the ListDetectorRecipeDetectorRules operation to list all the rules in a detector recipe.