Get FalconPreventionPolicy

Get-FalconPreventionPolicy

SYNOPSIS

Search for Prevention policies

DESCRIPTION

Requires 'Prevention Policies: Read'.

PARAMETERS

Name	Type	Description	Min	Max	Allowed	Pipeline	PipelineByName
Id	String[]	Policy identifier				X	X
Filter	String	Falcon Query Language expression to limit results
Sort	String	Property and direction to sort results			created_by.asc created_by.desc created_timestamp.asc created_timestamp.desc enabled.asc enabled.desc modified_by.asc modified_by.desc modified_timestamp.asc modified_timestamp.desc name.asc name.desc platform_name.asc platform_name.desc precedence.asc precedence.desc
Limit	Int32	Maximum number of results per request	1	5000
Include	String[]	Include additional properties			members
Offset	Int32	Position to begin retrieving results
Detailed	Switch	Retrieve detailed information
All	Switch	Repeat requests until all available results are retrieved
Total	Switch	Display total result count instead of results

SYNTAX

Get-FalconPreventionPolicy [[-Filter] <String>] [[-Sort] <String>] [[-Limit] <Int32>] [[-Include] <String[]>] [-Offset <Int32>] [-All] [-Total] [-WhatIf] [-Confirm] [<CommonParameters>]

Get-FalconPreventionPolicy -Id <String[]> [[-Include] <String[]>] [-WhatIf] [-Confirm] [<CommonParameters>]

Get-FalconPreventionPolicy [[-Filter] <String>] [[-Sort] <String>] [[-Limit] <Int32>] [[-Include] <String[]>] [-Offset <Int32>] -Detailed [-All] [-WhatIf] [-Confirm] [<CommonParameters>]

REFERENCE

Endpoints

GET /policy/combined/prevention/v1
GET /policy/entities/prevention/v1
GET /policy/queries/prevention/v1

falconpy

queryPreventionPolicies
getPreventionPolicies
queryCombinedPreventionPolicies

USAGE

Find existing Prevention policies

Get-FalconPreventionPolicy -All [-Detailed]

2023-04-25: PSFalcon v2.2.5