mirror of
https://github.com/MicrosoftDocs/windows-itpro-docs.git
synced 2025-06-19 12:23:37 +00:00
fix meta data
This commit is contained in:
Joey Caparas
@ -13,7 +13,7 @@ ms.localizationpriority: high
|
|||||||
ms.date: 09/05/2017
|
ms.date: 09/05/2017
|
||||||
---
|
---
|
||||||
|
|
||||||
# Get alert related domain information
|
# Get alert related IP information
|
||||||
Retrieves all IPs related to a specific alert.
|
Retrieves all IPs related to a specific alert.
|
||||||
|
|
||||||
## Permissions
|
## Permissions
|
||||||
|
|||||||
@ -13,7 +13,7 @@ ms.localizationpriority: high
|
|||||||
ms.date: 09/05/2017
|
ms.date: 09/05/2017
|
||||||
---
|
---
|
||||||
|
|
||||||
# Get machines
|
# Get machine by ID
|
||||||
Retrieves a machine entity by ID.
|
Retrieves a machine entity by ID.
|
||||||
|
|
||||||
## Permissions
|
## Permissions
|
||||||
|
|||||||
@ -1,6 +1,6 @@
|
|||||||
---
|
---
|
||||||
title: Get user related machines API
|
title: Get user related machines API
|
||||||
description: Retrieves a collection of alerts related to a given user ID.
|
description: Retrieves a collection of machines related to a given user ID.
|
||||||
keywords: apis, graph api, supported apis, get, user, user related alerts
|
keywords: apis, graph api, supported apis, get, user, user related alerts
|
||||||
search.product: eADQiWindows 10XVcnh
|
search.product: eADQiWindows 10XVcnh
|
||||||
ms.prod: w10
|
ms.prod: w10
|
||||||
@ -13,8 +13,8 @@ ms.localizationpriority: high
|
|||||||
ms.date: 09/05/2017
|
ms.date: 09/05/2017
|
||||||
---
|
---
|
||||||
|
|
||||||
# Get user related alerts
|
# Get user related machines
|
||||||
Retrieves a collection of alerts related to a given user ID.
|
Retrieves a collection of machines related to a given user ID.
|
||||||
|
|
||||||
## Permissions
|
## Permissions
|
||||||
User needs read permissions.
|
User needs read permissions.
|
||||||
|
|||||||
@ -24,16 +24,6 @@ ms.date: 09/05/2017
|
|||||||
|
|
||||||
[!include[Prerelease information](prerelease.md)]
|
[!include[Prerelease information](prerelease.md)]
|
||||||
|
|
||||||
# Investigate a user account in Windows Defender ATP
|
|
||||||
|
|
||||||
**Applies to:**
|
|
||||||
|
|
||||||
- Windows 10 Enterprise
|
|
||||||
- Windows 10 Education
|
|
||||||
- Windows 10 Pro
|
|
||||||
- Windows 10 Pro Education
|
|
||||||
- Windows Defender Advanced Threat Protection (Windows Defender ATP)
|
|
||||||
|
|
||||||
## Investigate user account entities
|
## Investigate user account entities
|
||||||
Identify user accounts with the most active alerts (displayed on dashboard as "Users at risk") and investigate cases of potential compromised credentials, or pivot on the associated user account when investigating an alert or machine to identify possible lateral movement between machines with that user account.
|
Identify user accounts with the most active alerts (displayed on dashboard as "Users at risk") and investigate cases of potential compromised credentials, or pivot on the associated user account when investigating an alert or machine to identify possible lateral movement between machines with that user account.
|
||||||
|
|
||||||
|
|||||||
@ -1,6 +1,6 @@
|
|||||||
---
|
---
|
||||||
title: Supported Windows Defender Advanced Threat Protection APIs
|
title: Supported Windows Defender Advanced Threat Protection APIs
|
||||||
description: Use the exposed data and actions using a set of progammatic APIs that are part of the Microsoft Intelligence Security Graph.
|
description: Learn about the specific supported Windows Defender Advanced Threat Protection entities where you can create API calls to.
|
||||||
keywords: apis, graph api, supported apis, actor, alerts, machine, user, domain, ip, file
|
keywords: apis, graph api, supported apis, actor, alerts, machine, user, domain, ip, file
|
||||||
search.product: eADQiWindows 10XVcnh
|
search.product: eADQiWindows 10XVcnh
|
||||||
ms.prod: w10
|
ms.prod: w10
|
||||||
|
|||||||
Reference in New Issue
Block a user