custom/New-AzSentinelDataConnector.ps1
|
# ---------------------------------------------------------------------------------- # # Copyright Microsoft Corporation # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # http://www.apache.org/licenses/LICENSE-2.0 # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. # ---------------------------------------------------------------------------------- <# .Synopsis Creates or updates the data connector. .Description Creates or updates the data connector. .Link https://learn.microsoft.com/powershell/module/az.securityinsights/new-azsentineldataconnector #> function New-AzSentinelDataConnector { [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Runtime.CmdletBreakingChange("11.0.0", "4.0.0", "2023/11/15", ChangeDescription="ParameterSets AmazonWebServicesS3, Dynamics365, MicrosoftThreatIntelligence, MicrosoftThreatProtection, OfficeATP, OfficeIRM, ThreatIntelligenceTaxii will be deprecated.")] [OutputType([Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.DataConnector])] [CmdletBinding(DefaultParameterSetName = 'AADAATP', PositionalBinding = $false, SupportsShouldProcess, ConfirmImpact = 'Medium')] param( [Parameter()] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Path')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Runtime.DefaultInfo(Script = '(Get-AzContext).Subscription.Id')] [System.String] # Gets subscription credentials which uniquely identify Microsoft Azure subscription. # The subscription ID forms part of the URI for every service call. ${SubscriptionId}, [Parameter(Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Path')] [System.String] # The Resource Group Name. ${ResourceGroupName}, [Parameter(Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Path')] [System.String] # The name of the workspace. ${WorkspaceName}, [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Path')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Runtime.DefaultInfo(Script = '(New-Guid).Guid')] [System.String] # The Id of the Data Connector. ${Id}, [Parameter(Mandatory)] [ArgumentCompleter([Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.DataConnectorKind])] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.DataConnectorKind] # Kind of the the data connection ${Kind}, [Parameter(ParameterSetName = 'AADAATP')] [Parameter(ParameterSetName = 'Dynamics365')] [Parameter(ParameterSetName = 'MicrosoftCloudAppSecurity')] [Parameter(ParameterSetName = 'MicrosoftDefenderAdvancedThreatProtection')] [Parameter(ParameterSetName = 'MicrosoftThreatIntelligence')] [Parameter(ParameterSetName = 'MicrosoftThreatProtection')] [Parameter(ParameterSetName = 'Office365')] [Parameter(ParameterSetName = 'OfficeATP')] [Parameter(ParameterSetName = 'OfficeIRM')] [Parameter(ParameterSetName = 'ThreatIntelligence')] [Parameter(ParameterSetName = 'ThreatIntelligenceTaxii')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Runtime.DefaultInfo(Script = '(Get-AzContext).Tenant.Id')] [System.String] # The TenantId. ${TenantId}, [Parameter(ParameterSetName = 'AzureSecurityCenter', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] # ASC Subscription Id. ${ASCSubscriptionId}, [Parameter(ParameterSetName = 'AADAATP')] [Parameter(ParameterSetName = 'AzureSecurityCenter')] [Parameter(ParameterSetName = 'MicrosoftCloudAppSecurity')] [Parameter(ParameterSetName = 'MicrosoftDefenderAdvancedThreatProtection')] [Parameter(ParameterSetName = 'OfficeATP')] [Parameter(ParameterSetName = 'OfficeIRM')] [ArgumentCompleter([Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.DataTypeState])] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${Alerts}, [Parameter(ParameterSetName = 'Dynamics365')] [ArgumentCompleter([Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.DataTypeState])] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${CommonDataServiceActivity}, [Parameter(ParameterSetName = 'MicrosoftCloudAppSecurity')] [ArgumentCompleter([Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.DataTypeState])] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${DiscoveryLog}, [Parameter(ParameterSetName = 'MicrosoftThreatIntelligence')] [ArgumentCompleter([Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.DataTypeState])] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${BingSafetyPhishingURL}, [Parameter(ParameterSetName = 'MicrosoftThreatIntelligence')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [ValidateSet('OneDay', 'OneWeek', 'OneMonth', 'All')] [System.String] ${BingSafetyPhishingUrlLookbackPeriod}, [Parameter(ParameterSetName = 'MicrosoftThreatIntelligence')] [ArgumentCompleter([Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.DataTypeState])] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${MicrosoftEmergingThreatFeed}, [Parameter(ParameterSetName = 'MicrosoftThreatIntelligence')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [ValidateSet('OneDay', 'OneWeek', 'OneMonth', 'All')] [System.String] ${MicrosoftEmergingThreatFeedLookbackPeriod}, [Parameter(ParameterSetName = 'MicrosoftThreatProtection')] [ArgumentCompleter([Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.DataTypeState])] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${Incident}, [Parameter(ParameterSetName = 'Office365')] [ArgumentCompleter([Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.DataTypeState])] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${Exchange}, [Parameter(ParameterSetName = 'Office365')] [ArgumentCompleter([Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.DataTypeState])] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${SharePoint}, [Parameter(ParameterSetName = 'Office365')] [ArgumentCompleter([Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.DataTypeState])] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${Teams}, [Parameter(ParameterSetName = 'ThreatIntelligence')] [ArgumentCompleter([Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.DataTypeState])] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${Indicator}, [Parameter(ParameterSetName = 'ThreatIntelligenceTaxii', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${WorkspaceId}, [Parameter(ParameterSetName = 'ThreatIntelligenceTaxii', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${FriendlyName}, [Parameter(ParameterSetName = 'ThreatIntelligenceTaxii', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${APIRootURL}, [Parameter(ParameterSetName = 'ThreatIntelligenceTaxii', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${CollectionId}, [Parameter(ParameterSetName = 'ThreatIntelligenceTaxii')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${UserName}, [Parameter(ParameterSetName = 'ThreatIntelligenceTaxii')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${Password}, [Parameter(ParameterSetName = 'ThreatIntelligenceTaxii')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [ValidateSet('OneDay', 'OneWeek', 'OneMonth', 'All')] [System.String] ${TaxiiLookbackPeriod}, [Parameter(ParameterSetName = 'ThreatIntelligenceTaxii', Mandatory)] [ArgumentCompleter([Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.PollingFrequency])] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.PollingFrequency] ${PollingFrequency}, [Parameter(ParameterSetName = 'AmazonWebServicesCloudTrail', Mandatory)] [Parameter(ParameterSetName = 'AmazonWebServicesS3', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${AWSRoleArn}, [Parameter(ParameterSetName = 'AmazonWebServicesCloudTrail')] [Parameter(ParameterSetName = 'AmazonWebServicesS3', Mandatory)] [ArgumentCompleter([Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Support.DataTypeState])] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${Log}, [Parameter(ParameterSetName = 'AmazonWebServicesS3', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [String[]] ${SQSURL}, [Parameter(ParameterSetName = 'AmazonWebServicesS3', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${DetinationTable}, [Parameter(ParameterSetName = 'GenericUI', Mandatory)] #[Parameter(ParameterSetName = 'APIPolling', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${UiConfigTitle}, [Parameter(ParameterSetName = 'GenericUI', Mandatory)] #[Parameter(ParameterSetName = 'APIPolling', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${UiConfigPublisher}, [Parameter(ParameterSetName = 'GenericUI', Mandatory)] #[Parameter(ParameterSetName = 'APIPolling', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${UiConfigDescriptionMarkdown}, [Parameter(ParameterSetName = 'GenericUI')] #[Parameter(ParameterSetName = 'APIPolling')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${UiConfigCustomImage}, [Parameter(ParameterSetName = 'GenericUI', Mandatory)] #[Parameter(ParameterSetName = 'APIPolling', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [System.String] ${UiConfigGraphQueriesTableName}, [Parameter(ParameterSetName = 'GenericUI', Mandatory)] #[Parameter(ParameterSetName = 'APIPolling', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.GraphQueries[]] ${UiConfigGraphQuery}, [Parameter(ParameterSetName = 'GenericUI', Mandatory)] #[Parameter(ParameterSetName = 'APIPolling', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.SampleQueries[]] ${UiConfigSampleQuery}, [Parameter(ParameterSetName = 'GenericUI', Mandatory)] #[Parameter(ParameterSetName = 'APIPolling', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.LastDataReceivedDataType[]] ${UiConfigDataType}, [Parameter(ParameterSetName = 'GenericUI', Mandatory)] #[Parameter(ParameterSetName = 'APIPolling', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.ConnectivityCriteria[]] ${UiConfigConnectivityCriterion}, [Parameter(ParameterSetName = 'GenericUI', Mandatory)] #[Parameter(ParameterSetName = 'APIPolling', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [Bool] ${AvailabilityIsPreview}, [Parameter(ParameterSetName = 'GenericUI')] #[Parameter(ParameterSetName = 'APIPolling')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Runtime.DefaultInfo(Script = 1)] [Int] ${AvailabilityStatus}, [Parameter(ParameterSetName = 'GenericUI')] #[Parameter(ParameterSetName = 'APIPolling')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.PermissionsResourceProviderItem[]] ${PermissionResourceProvider}, [Parameter(ParameterSetName = 'GenericUI')] #[Parameter(ParameterSetName = 'APIPolling')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.PermissionsCustomsItem[]] ${PermissionCustom}, [Parameter(ParameterSetName = 'GenericUI', Mandatory)] #[Parameter(ParameterSetName = 'APIPolling', Mandatory)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Body')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.InstructionSteps[]] ${UiConfigInstructionStep}, [Parameter()] [Alias('AzureRMContext', 'AzureCredential')] [ValidateNotNull()] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Azure')] [System.Management.Automation.PSObject] # The credentials, account, tenant, and subscription used for communication with Azure. ${DefaultProfile}, [Parameter()] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Runtime')] [System.Management.Automation.SwitchParameter] # Run the command as a job ${AsJob}, [Parameter(DontShow)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Runtime')] [System.Management.Automation.SwitchParameter] # Wait for .NET debugger to attach ${Break}, [Parameter(DontShow)] [ValidateNotNull()] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Runtime')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Runtime.SendAsyncStep[]] # SendAsync Pipeline Steps to be appended to the front of the pipeline ${HttpPipelineAppend}, [Parameter(DontShow)] [ValidateNotNull()] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Runtime')] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Runtime.SendAsyncStep[]] # SendAsync Pipeline Steps to be prepended to the front of the pipeline ${HttpPipelinePrepend}, [Parameter()] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Runtime')] [System.Management.Automation.SwitchParameter] # Run the command asynchronously ${NoWait}, [Parameter(DontShow)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Runtime')] [System.Uri] # The URI for the proxy server to use ${Proxy}, [Parameter(DontShow)] [ValidateNotNull()] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Runtime')] [System.Management.Automation.PSCredential] # Credentials for a proxy server to use for the remote call ${ProxyCredential}, [Parameter(DontShow)] [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Category('Runtime')] [System.Management.Automation.SwitchParameter] # Use the default credentials for the proxy ${ProxyUseDefaultCredentials} ) process { try { if ($PSBoundParameters['Kind'] -eq 'AzureActiveDirectory'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.AadDataConnector]::new() $DataConnector.TenantId = $PSBoundParameters['TenantId'] $null = $PSBoundParameters.Remove('TenantId') If($PSBoundParameters['Alerts']){ $DataConnector.AlertState = $PSBoundParameters['Alerts'] $null = $PSBoundParameters.Remove('Alerts') } } if($PSBoundParameters['Kind'] -eq 'AzureAdvancedThreatProtection'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.AatpDataConnector]::new() $DataConnector.TenantId = $PSBoundParameters['TenantId'] $null = $PSBoundParameters.Remove('TenantId') If($PSBoundParameters['Alerts']){ $DataConnector.AlertState = $PSBoundParameters['Alerts'] $null = $PSBoundParameters.Remove('Alerts') } } if($PSBoundParameters['Kind'] -eq 'Dynamics365'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.Dynamics365DataConnector]::new() $DataConnector.TenantId = $PSBoundParameters['TenantId'] $null = $PSBoundParameters.Remove('TenantId') If($PSBoundParameters['CommonDataServiceActivity']){ $DataConnector.Dynamics365CdActivityState = $PSBoundParameters['CommonDataServiceActivity'] $null = $PSBoundParameters.Remove('CommonDataServiceActivity') } } if($PSBoundParameters['Kind'] -eq 'MicrosoftCloudAppSecurity'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.McasDataConnector]::new() $DataConnector.TenantId = $PSBoundParameters['TenantId'] $null = $PSBoundParameters.Remove('TenantId') If($PSBoundParameters['Alerts']){ $DataConnector.DataTypeAlertState = $PSBoundParameters['Alerts'] $null = $PSBoundParameters.Remove('Alerts') } If($PSBoundParameters['DiscoveryLog']){ $DataConnector.DiscoveryLogState = $PSBoundParameters['DiscoveryLog'] $null = $PSBoundParameters.Remove('DiscoveryLog') } } if($PSBoundParameters['Kind'] -eq 'MicrosoftDefenderAdvancedThreatProtection'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.MdatpDataConnector]::new() $DataConnector.TenantId = $PSBoundParameters['TenantId'] $null = $PSBoundParameters.Remove('TenantId') If($PSBoundParameters['Alerts']){ $DataConnector.AlertState = $PSBoundParameters['Alerts'] $null = $PSBoundParameters.Remove('Alerts') } } if($PSBoundParameters['Kind'] -eq 'MicrosoftThreatIntelligence'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.MstiDataConnector]::new() $DataConnector.TenantId = $PSBoundParameters['TenantId'] $null = $PSBoundParameters.Remove('TenantId') If($PSBoundParameters['BingSafetyPhishingURL']){ $DataConnector.BingSafetyPhishingUrlState = $PSBoundParameters['BingSafetyPhishingURL'] $null = $PSBoundParameters.Remove('BingSafetyPhishingURL') } If($PSBoundParameters['BingSafetyPhishingUrlLookbackPeriod']){ if($PSBoundParameters['BingSafetyPhishingUrlLookbackPeriod'] -eq 'OneDay'){ $DataConnector.BingSafetyPhishingUrlLookbackPeriod = ((Get-Date).AddDays(-1).ToUniversalTime() | Get-DAte -Format yyyy-MM-ddTHH:mm:ss.fffZ).ToString() } elseif ($PSBoundParameters['BingSafetyPhishingUrlLookbackPeriod'] -eq 'OneWeek') { $DataConnector.BingSafetyPhishingUrlLookbackPeriod = ((Get-Date).AddDays(-7).ToUniversalTime() | Get-DAte -Format yyyy-MM-ddTHH:mm:ss.fffZ).ToString() } elseif ($PSBoundParameters['BingSafetyPhishingUrlLookbackPeriod'] -eq 'OneMonth') { $DataConnector.BingSafetyPhishingUrlLookbackPeriod = ((Get-Date).AddMonths(-1).ToUniversalTime() | Get-DAte -Format yyyy-MM-ddTHH:mm:ss.fffZ).ToString() } elseif ($PSBoundParameters['BingSafetyPhishingUrlLookbackPeriod'] -eq 'All') { $DataConnector.BingSafetyPhishingUrlLookbackPeriod = "1970-01-01T00:00:00.000Z" } $null = $PSBoundParameters.Remove('BingSafetyPhishingUrlLookbackPeriod') } else{ $DataConnector.BingSafetyPhishingUrlLookbackPeriod = "1970-01-01T00:00:00.000Z" } If($PSBoundParameters['MicrosoftEmergingThreatFeed']){ $DataConnector.MicrosoftEmergingThreatFeedState = $PSBoundParameters['MicrosoftEmergingThreatFeed'] $null = $PSBoundParameters.Remove('MicrosoftEmergingThreatFeed') } If($PSBoundParameters['MicrosoftEmergingThreatFeedLookbackPeriod']){ if($PSBoundParameters['MicrosoftEmergingThreatFeedLookbackPeriod'] -eq 'OneDay'){ $DataConnector.MicrosoftEmergingThreatFeedLookbackPeriod = ((Get-Date).AddDays(-1).ToUniversalTime() | Get-DAte -Format yyyy-MM-ddTHH:mm:ss.fffZ).ToString() } elseif ($PSBoundParameters['MicrosoftEmergingThreatFeedLookbackPeriod'] -eq 'OneWeek') { $DataConnector.MicrosoftEmergingThreatFeedLookbackPeriod = ((Get-Date).AddDays(-7).ToUniversalTime() | Get-DAte -Format yyyy-MM-ddTHH:mm:ss.fffZ).ToString() } elseif ($PSBoundParameters['MicrosoftEmergingThreatFeedLookbackPeriod'] -eq 'OneMonth') { $DataConnector.MicrosoftEmergingThreatFeedLookbackPeriod = ((Get-Date).AddMonths(-1).ToUniversalTime() | Get-DAte -Format yyyy-MM-ddTHH:mm:ss.fffZ).ToString() } elseif ($PSBoundParameters['MicrosoftEmergingThreatFeedLookbackPeriod'] -eq 'All') { $DataConnector.MicrosoftEmergingThreatFeedLookbackPeriod = "1970-01-01T00:00:00.000Z" } $null = $PSBoundParameters.Remove('MicrosoftEmergingThreatFeedLookbackPeriod') } else{ $DataConnector.MicrosoftEmergingThreatFeedLookbackPeriod = "1970-01-01T00:00:00.000Z" } } if($PSBoundParameters['Kind'] -eq 'MicrosoftThreatProtection'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.MtpDataConnector]::new() $DataConnector.TenantId = $PSBoundParameters['TenantId'] $null = $PSBoundParameters.Remove('TenantId') If($PSBoundParameters['Incident']){ $DataConnector.IncidentState = $PSBoundParameters['Incident'] $null = $PSBoundParameters.Remove('Incident') } } if($PSBoundParameters['Kind'] -eq 'Office365'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.OfficeDataConnector]::new() $DataConnector.TenantId = $PSBoundParameters['TenantId'] $null = $PSBoundParameters.Remove('TenantId') If($PSBoundParameters['Exchange']){ $DataConnector.ExchangeState = $PSBoundParameters['Exchange'] $null = $PSBoundParameters.Remove('Exchange') } If($PSBoundParameters['SharePoint']){ $DataConnector.SharePointState = $PSBoundParameters['SharePoint'] $null = $PSBoundParameters.Remove('SharePoint') } If($PSBoundParameters['Teams']){ $DataConnector.TeamState = $PSBoundParameters['Teams'] $null = $PSBoundParameters.Remove('Teams') } } if($PSBoundParameters['Kind'] -eq 'OfficeATP'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.OfficeAtpDataConnector]::new() $DataConnector.TenantId = $PSBoundParameters['TenantId'] $null = $PSBoundParameters.Remove('TenantId') If($PSBoundParameters['Alerts']){ $DataConnector.AlertState = $PSBoundParameters['Alerts'] $null = $PSBoundParameters.Remove('Alerts') } } if($PSBoundParameters['Kind'] -eq 'OfficeIRM'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.OfficeIrmDataConnector]::new() $DataConnector.TenantId = $PSBoundParameters['TenantId'] $null = $PSBoundParameters.Remove('TenantId') If($PSBoundParameters['Alerts']){ $DataConnector.AlertState = $PSBoundParameters['Alerts'] $null = $PSBoundParameters.Remove('Alerts') } } if($PSBoundParameters['Kind'] -eq 'ThreatIntelligence'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.TiDataConnector]::new() $DataConnector.TenantId = $PSBoundParameters['TenantId'] $null = $PSBoundParameters.Remove('TenantId') $DataConnector.TipLookbackPeriod = "1970-01-01T00:00:00.000Z" If($PSBoundParameters['Indicator']){ $DataConnector.IndicatorState = $PSBoundParameters['Indicator'] $null = $PSBoundParameters.Remove('Indicator') } } if($PSBoundParameters['Kind'] -eq 'ThreatIntelligenceTaxii'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.TiTaxiiDataConnector]::new() $DataConnector.TenantId = $PSBoundParameters['TenantId'] $null = $PSBoundParameters.Remove('TenantId') $DataConnector.FriendlyName = $PSBoundParameters['FriendlyName'] $null = $PSBoundParameters.Remove('FriendlyName') $DataConnector.TaxiiServer = $PSBoundParameters['APIRootURL'] $null = $PSBoundParameters.Remove('APIRootURL') $DataConnector.CollectionId = $PSBoundParameters['CollectionId'] $null = $PSBoundParameters.Remove('CollectionId') If($PSBoundParameters['UserName']){ $DataConnector.UserName = $PSBoundParameters['UserName'] $null = $PSBoundParameters.Remove('UserName') } If($PSBoundParameters['Password']){ $DataConnector.Password = $PSBoundParameters['Password'] $null = $PSBoundParameters.Remove('Password') } $DataConnector.WorkspaceId = $PSBoundParameters['WorkspaceId'] $null = $PSBoundParameters.Remove('WorkspaceId') if($PSBoundParameters['PollingFrequency'] -eq 'OnceADay'){ $DataConnector.PollingFrequency = "OnceADay" } elseif ($PSBoundParameters['PollingFrequency'] -eq 'OnceAMinute') { $DataConnector.PollingFrequency = "OnceAMinute" } elseif ($PSBoundParameters['PollingFrequency'] -eq 'OnceAnHour') { $DataConnector.PollingFrequency = "OnceAnHour" } $null = $PSBoundParameters.Remove('PollingFrequency') } if($PSBoundParameters['Kind'] -eq 'AzureSecurityCenter'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.AscDataConnector]::new() $DataConnector.SubscriptionId = $PSBoundParameters['ASCSubscriptionId'] $null = $PSBoundParameters.Remove('ASCSubscriptionId') If($PSBoundParameters['Alerts']){ $DataConnector.AlertState = $PSBoundParameters['Alerts'] $null = $PSBoundParameters.Remove('Alerts') } } if($PSBoundParameters['Kind'] -eq 'AmazonWebServicesCloudTrail'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.AwsCloudTrailDataConnector]::new() $DataConnector.AWSRoleArn = $PSBoundParameters['AWSRoleArn'] $null = $PSBoundParameters.Remove('AWSRoleArn') If($PSBoundParameters['Log']){ $DataConnector.LogState = $PSBoundParameters['Log'] $null = $PSBoundParameters.Remove('Log') } } if($PSBoundParameters['Kind'] -eq 'AmazonWebServicesS3'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.AwsCloudTrailDataConnector]::new() $DataConnector.RoleArn = $PSBoundParameters['AWSRoleArn'] $null = $PSBoundParameters.Remove('AWSRoleArn') If($PSBoundParameters['Log']){ $DataConnector.LogState = $PSBoundParameters['Log'] $null = $PSBoundParameters.Remove('Log') } $DataConnector.SqsUrl = $PSBoundParameters['SQSURL'] $null = $PSBoundParameters.Remove('SQSURL') $DataConnector.DestinationTable = $PSBoundParameters['DetinationTable'] $null = $PSBoundParameters.Remove('DetinationTable') } if($PSBoundParameters['Kind'] -eq 'GenericUI'){ $DataConnector = [Microsoft.Azure.PowerShell.Cmdlets.SecurityInsights.Models.Api20210901Preview.CodelessUiDataConnector]::new() $DataConnector.ConnectorUiConfigTitle = $PSBoundParameters['UiConfigTitle'] $null = $PSBoundParameters.Remove('UiConfigTitle') $DataConnector.ConnectorUiConfigPublisher = $PSBoundParameters['UiConfigPublisher'] $null = $PSBoundParameters.Remove('UiConfigPublisher') $DataConnector.ConnectorUiConfigDescriptionMarkdown = $PSBoundParameters['UiConfigDescriptionMarkdown'] $null = $PSBoundParameters.Remove('UiConfigDescriptionMarkdown') If($PSBoundParameters['UiConfigCustomImage']){ $DataConnector.ConnectorUiConfigCustomImage = $PSBoundParameters['UiConfigCustomImage'] $null = $PSBoundParameters.Remove('UiConfigCustomImage') } $DataConnector.ConnectorUiConfigGraphQueriesTableName = $PSBoundParameters['UiConfigGraphQueriesTableName'] $null = $PSBoundParameters.Remove('UiConfigGraphQueriesTableName') $DataConnector.ConnectorUiConfigGraphQuery = $PSBoundParameters['UiConfigGraphQuery'] $null = $PSBoundParameters.Remove('UiConfigGraphQuery') $DataConnector.ConnectorUiConfigSampleQuery = $PSBoundParameters['UiConfigSampleQuery'] $null = $PSBoundParameters.Remove('UiConfigSampleQuery') $DataConnector.ConnectorUiConfigDataType = $PSBoundParameters['UiConfigDataType'] $null = $PSBoundParameters.Remove('UiConfigDataType') $DataConnector.ConnectorUiConfigConnectivityCriterion = $PSBoundParameters['UiConfigConnectivityCriterion'] $null = $PSBoundParameters.Remove('UiConfigConnectivityCriterion') $DataConnector.AvailabilityIsPreview = $PSBoundParameters['AvailabilityIsPreview'] $null = $PSBoundParameters.Remove('AvailabilityIsPreview') If($PSBoundParameters['AvailabilityStatus']){ $DataConnector.AvailabilityStatus = $PSBoundParameters['AvailabilityStatus'] $null = $PSBoundParameters.Remove('AvailabilityStatus') } If($PSBoundParameters['PermissionResourceProvider']){ $DataConnector.AvailabilityStatus = $PSBoundParameters['PermissionResourceProvider'] $null = $PSBoundParameters.Remove('PermissionResourceProvider') } ElseIf($PSBoundParameters['PermissionCustom']){ $DataConnector.AvailabilityStatus = $PSBoundParameters['PermissionCustom'] $null = $PSBoundParameters.Remove('PermissionCustom') } Else { Write-Host -ForegroundColor Red "You must provide either a Resource Provider Permission or Custom Permissions" break } $DataConnector.ConnectorUiConfigInstructionStep = $PSBoundParameters['UiConfigInstructionStep'] $null = $PSBoundParameters.Remove('UiConfigInstructionStep') } $DataConnector.Kind = $PSBoundParameters['Kind'] $null = $PSBoundParameters.Remove('Kind') $null = $PSBoundParameters.Remove('DataConnector') $null = $PSBoundParameters.Add('DataConnector', $DataConnector) Az.SecurityInsights.internal\New-AzSentinelDataConnector @PSBoundParameters } catch { throw } } } # SIG # Begin signature block # MIInzgYJKoZIhvcNAQcCoIInvzCCJ7sCAQExDzANBglghkgBZQMEAgEFADB5Bgor # BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG # KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCB71wa88xCMw17h # 6so7ShtfxNtogRk6vU/Nx9Y0kCIvrKCCDYUwggYDMIID66ADAgECAhMzAAADTU6R # phoosHiPAAAAAANNMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD # VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p # bmcgUENBIDIwMTEwHhcNMjMwMzE2MTg0MzI4WhcNMjQwMzE0MTg0MzI4WjB0MQsw # CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u # ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB # AQDUKPcKGVa6cboGQU03ONbUKyl4WpH6Q2Xo9cP3RhXTOa6C6THltd2RfnjlUQG+ # Mwoy93iGmGKEMF/jyO2XdiwMP427j90C/PMY/d5vY31sx+udtbif7GCJ7jJ1vLzd # j28zV4r0FGG6yEv+tUNelTIsFmmSb0FUiJtU4r5sfCThvg8dI/F9Hh6xMZoVti+k # bVla+hlG8bf4s00VTw4uAZhjGTFCYFRytKJ3/mteg2qnwvHDOgV7QSdV5dWdd0+x # zcuG0qgd3oCCAjH8ZmjmowkHUe4dUmbcZfXsgWlOfc6DG7JS+DeJak1DvabamYqH # g1AUeZ0+skpkwrKwXTFwBRltAgMBAAGjggGCMIIBfjAfBgNVHSUEGDAWBgorBgEE # AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQUId2Img2Sp05U6XI04jli2KohL+8w # VAYDVR0RBE0wS6RJMEcxLTArBgNVBAsTJE1pY3Jvc29mdCBJcmVsYW5kIE9wZXJh # dGlvbnMgTGltaXRlZDEWMBQGA1UEBRMNMjMwMDEyKzUwMDUxNzAfBgNVHSMEGDAW # gBRIbmTlUAXTgqoXNzcitW2oynUClTBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8v # d3d3Lm1pY3Jvc29mdC5jb20vcGtpb3BzL2NybC9NaWNDb2RTaWdQQ0EyMDExXzIw # MTEtMDctMDguY3JsMGEGCCsGAQUFBwEBBFUwUzBRBggrBgEFBQcwAoZFaHR0cDov # L3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jZXJ0cy9NaWNDb2RTaWdQQ0EyMDEx # XzIwMTEtMDctMDguY3J0MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggIB # ACMET8WuzLrDwexuTUZe9v2xrW8WGUPRQVmyJ1b/BzKYBZ5aU4Qvh5LzZe9jOExD # YUlKb/Y73lqIIfUcEO/6W3b+7t1P9m9M1xPrZv5cfnSCguooPDq4rQe/iCdNDwHT # 6XYW6yetxTJMOo4tUDbSS0YiZr7Mab2wkjgNFa0jRFheS9daTS1oJ/z5bNlGinxq # 2v8azSP/GcH/t8eTrHQfcax3WbPELoGHIbryrSUaOCphsnCNUqUN5FbEMlat5MuY # 94rGMJnq1IEd6S8ngK6C8E9SWpGEO3NDa0NlAViorpGfI0NYIbdynyOB846aWAjN # fgThIcdzdWFvAl/6ktWXLETn8u/lYQyWGmul3yz+w06puIPD9p4KPiWBkCesKDHv # XLrT3BbLZ8dKqSOV8DtzLFAfc9qAsNiG8EoathluJBsbyFbpebadKlErFidAX8KE # usk8htHqiSkNxydamL/tKfx3V/vDAoQE59ysv4r3pE+zdyfMairvkFNNw7cPn1kH # Gcww9dFSY2QwAxhMzmoM0G+M+YvBnBu5wjfxNrMRilRbxM6Cj9hKFh0YTwba6M7z # ntHHpX3d+nabjFm/TnMRROOgIXJzYbzKKaO2g1kWeyG2QtvIR147zlrbQD4X10Ab # rRg9CpwW7xYxywezj+iNAc+QmFzR94dzJkEPUSCJPsTFMIIHejCCBWKgAwIBAgIK # YQ6Q0gAAAAAAAzANBgkqhkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNV # BAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jv # c29mdCBDb3Jwb3JhdGlvbjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlm # aWNhdGUgQXV0aG9yaXR5IDIwMTEwHhcNMTEwNzA4MjA1OTA5WhcNMjYwNzA4MjEw # OTA5WjB+MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UE # BxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSgwJgYD # VQQDEx9NaWNyb3NvZnQgQ29kZSBTaWduaW5nIFBDQSAyMDExMIICIjANBgkqhkiG # 9w0BAQEFAAOCAg8AMIICCgKCAgEAq/D6chAcLq3YbqqCEE00uvK2WCGfQhsqa+la # UKq4BjgaBEm6f8MMHt03a8YS2AvwOMKZBrDIOdUBFDFC04kNeWSHfpRgJGyvnkmc # 6Whe0t+bU7IKLMOv2akrrnoJr9eWWcpgGgXpZnboMlImEi/nqwhQz7NEt13YxC4D # dato88tt8zpcoRb0RrrgOGSsbmQ1eKagYw8t00CT+OPeBw3VXHmlSSnnDb6gE3e+ # lD3v++MrWhAfTVYoonpy4BI6t0le2O3tQ5GD2Xuye4Yb2T6xjF3oiU+EGvKhL1nk # kDstrjNYxbc+/jLTswM9sbKvkjh+0p2ALPVOVpEhNSXDOW5kf1O6nA+tGSOEy/S6 # A4aN91/w0FK/jJSHvMAhdCVfGCi2zCcoOCWYOUo2z3yxkq4cI6epZuxhH2rhKEmd # X4jiJV3TIUs+UsS1Vz8kA/DRelsv1SPjcF0PUUZ3s/gA4bysAoJf28AVs70b1FVL # 5zmhD+kjSbwYuER8ReTBw3J64HLnJN+/RpnF78IcV9uDjexNSTCnq47f7Fufr/zd # sGbiwZeBe+3W7UvnSSmnEyimp31ngOaKYnhfsi+E11ecXL93KCjx7W3DKI8sj0A3 # T8HhhUSJxAlMxdSlQy90lfdu+HggWCwTXWCVmj5PM4TasIgX3p5O9JawvEagbJjS # 4NaIjAsCAwEAAaOCAe0wggHpMBAGCSsGAQQBgjcVAQQDAgEAMB0GA1UdDgQWBBRI # bmTlUAXTgqoXNzcitW2oynUClTAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTAL # BgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBRyLToCMZBD # uRQFTuHqp8cx0SOJNDBaBgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLm1pY3Jv # c29mdC5jb20vcGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFf # MDNfMjIuY3JsMF4GCCsGAQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3d3 # dy5taWNyb3NvZnQuY29tL3BraS9jZXJ0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFf # MDNfMjIuY3J0MIGfBgNVHSAEgZcwgZQwgZEGCSsGAQQBgjcuAzCBgzA/BggrBgEF # BQcCARYzaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9kb2NzL3ByaW1h # cnljcHMuaHRtMEAGCCsGAQUFBwICMDQeMiAdAEwAZQBnAGEAbABfAHAAbwBsAGkA # YwB5AF8AcwB0AGEAdABlAG0AZQBuAHQALiAdMA0GCSqGSIb3DQEBCwUAA4ICAQBn # 8oalmOBUeRou09h0ZyKbC5YR4WOSmUKWfdJ5DJDBZV8uLD74w3LRbYP+vj/oCso7 # v0epo/Np22O/IjWll11lhJB9i0ZQVdgMknzSGksc8zxCi1LQsP1r4z4HLimb5j0b # pdS1HXeUOeLpZMlEPXh6I/MTfaaQdION9MsmAkYqwooQu6SpBQyb7Wj6aC6VoCo/ # KmtYSWMfCWluWpiW5IP0wI/zRive/DvQvTXvbiWu5a8n7dDd8w6vmSiXmE0OPQvy # CInWH8MyGOLwxS3OW560STkKxgrCxq2u5bLZ2xWIUUVYODJxJxp/sfQn+N4sOiBp # mLJZiWhub6e3dMNABQamASooPoI/E01mC8CzTfXhj38cbxV9Rad25UAqZaPDXVJi # hsMdYzaXht/a8/jyFqGaJ+HNpZfQ7l1jQeNbB5yHPgZ3BtEGsXUfFL5hYbXw3MYb # BL7fQccOKO7eZS/sl/ahXJbYANahRr1Z85elCUtIEJmAH9AAKcWxm6U/RXceNcbS # oqKfenoi+kiVH6v7RyOA9Z74v2u3S5fi63V4GuzqN5l5GEv/1rMjaHXmr/r8i+sL # gOppO6/8MO0ETI7f33VtY5E90Z1WTk+/gFcioXgRMiF670EKsT/7qMykXcGhiJtX # cVZOSEXAQsmbdlsKgEhr/Xmfwb1tbWrJUnMTDXpQzTGCGZ8wghmbAgEBMIGVMH4x # CzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRt # b25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01p # Y3Jvc29mdCBDb2RlIFNpZ25pbmcgUENBIDIwMTECEzMAAANNTpGmGiiweI8AAAAA # A00wDQYJYIZIAWUDBAIBBQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQw # HAYKKwYBBAGCNwIBCzEOMAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEIHif # LkjXD9wjXuJxFLT6WdqdIxllGCgRufZeTiCNTOiRMEIGCisGAQQBgjcCAQwxNDAy # oBSAEgBNAGkAYwByAG8AcwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5j # b20wDQYJKoZIhvcNAQEBBQAEggEAAzOkHzfecFern7L7dxuWoIO4MCUPXnWxwykd # 2mhfglsapjopDtb+K0+KRHPr4ex40Qd6ZtgsrykYJCt+JPAgxqxd0WNnLJ1OY5do # 83pkqKra+86LXZk6VKSJXs/YSKNC/HGiZ5IlEpd9QlPFZDr8unlMcmqPne3+8s/1 # yGGC5FABv3nHGL9a+wnIrlHMo88Sy0xi2a0WWMnrWxmhpdIV8INsyR38WnRJhI7x # bmoZTbvnrYs8i7diuiNrk3o5i61dfHCsSjJzPZMUuy9nBnHOn8OtCJ6n3ES+brzQ # xQsykLVQQRv/6Ms6L6xkAWHVTh3/dmNudkC0JeMQDrlz0Ksls6GCFykwghclBgor # BgEEAYI3AwMBMYIXFTCCFxEGCSqGSIb3DQEHAqCCFwIwghb+AgEDMQ8wDQYJYIZI # AWUDBAIBBQAwggFZBgsqhkiG9w0BCRABBKCCAUgEggFEMIIBQAIBAQYKKwYBBAGE # WQoDATAxMA0GCWCGSAFlAwQCAQUABCBVJ9YIdIDIMTi/OBzmuIBWT6fOWBlCg5gf # 8f7E60X3bgIGZN9oYInaGBMyMDIzMDkyMDA1NTAzNS41OTlaMASAAgH0oIHYpIHV # MIHSMQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMH # UmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMS0wKwYDVQQL # EyRNaWNyb3NvZnQgSXJlbGFuZCBPcGVyYXRpb25zIExpbWl0ZWQxJjAkBgNVBAsT # HVRoYWxlcyBUU1MgRVNOOjE3OUUtNEJCMC04MjQ2MSUwIwYDVQQDExxNaWNyb3Nv # ZnQgVGltZS1TdGFtcCBTZXJ2aWNloIIReDCCBycwggUPoAMCAQICEzMAAAG1rRrf # 14VwbRMAAQAAAbUwDQYJKoZIhvcNAQELBQAwfDELMAkGA1UEBhMCVVMxEzARBgNV # BAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jv # c29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAg # UENBIDIwMTAwHhcNMjIwOTIwMjAyMjExWhcNMjMxMjE0MjAyMjExWjCB0jELMAkG # A1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQx # HjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEtMCsGA1UECxMkTWljcm9z # b2Z0IElyZWxhbmQgT3BlcmF0aW9ucyBMaW1pdGVkMSYwJAYDVQQLEx1UaGFsZXMg # VFNTIEVTTjoxNzlFLTRCQjAtODI0NjElMCMGA1UEAxMcTWljcm9zb2Z0IFRpbWUt # U3RhbXAgU2VydmljZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAJcL # CrhlXoLCjYmFxcFPgkh57dmuz31sNsj8IlvmEZRCbB94mxSIj35P8m5TKfCRmp7b # vuw4v/t3ucFjf52yVCDFIxFiZ3PCTI6D5hwlrDLSTrkf9UbuGmtUa8ULSHpatPfE # wZeJOzbBBPO5e6ihZsvIsBjUI5MK9GzLuAScMuwVF4lx3oDklPfdq30OMTWaMc57 # +Nky0LHPTZnAauVrJZKlQE3HPD0n4ASxKXRtQ6dsKjcOCayRcCTQNW3800nGAAXO # bJkWQYLD+CYiv/Ala5aHIXhMkKJ45t6xbba6IwK3klJ4sQC7vaQ67ASOA1Dxht+K # CG4niNaKhZf8ZOwPu7jPJOKPInzFVjU2nM2z5XQ2LZ+oQa3u69uURA+LnnAsT/A8 # ct+GD1BJVpZTz9ywF6eXDMEY8fhFs4xLSCxCl7gHH8a1wk8MmIZuVzcwgmWIeP4B # dlNsv22H3pCqWqBWMJKGXk+mcaEG1+Sn7YI/rWZBVdtVL2SJCem9+Gv+OHba7Cun # Yk5lZzUzPSej+hIZZNrH3FMGxyBi/JmKnSjosneEcTgpkr3BTZGRIK5OePJhwmw2 # 08jvcUszdRJFsW6fJ/yx1Z2fX6eYSCxp7ZDM2g+Wl0QkMh0iIbD7Ue0P6yqB8oxa # oLRjvX7Z8WL8cza2ynjAs8JnKsDK1+h3MXtEnimfAgMBAAGjggFJMIIBRTAdBgNV # HQ4EFgQUbFCG2YKGVV1V1VkF9DpNVTtmx1MwHwYDVR0jBBgwFoAUn6cVXQBeYl2D # 9OXSZacbUzUZ6XIwXwYDVR0fBFgwVjBUoFKgUIZOaHR0cDovL3d3dy5taWNyb3Nv # ZnQuY29tL3BraW9wcy9jcmwvTWljcm9zb2Z0JTIwVGltZS1TdGFtcCUyMFBDQSUy # MDIwMTAoMSkuY3JsMGwGCCsGAQUFBwEBBGAwXjBcBggrBgEFBQcwAoZQaHR0cDov # L3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jZXJ0cy9NaWNyb3NvZnQlMjBUaW1l # LVN0YW1wJTIwUENBJTIwMjAxMCgxKS5jcnQwDAYDVR0TAQH/BAIwADAWBgNVHSUB # Af8EDDAKBggrBgEFBQcDCDAOBgNVHQ8BAf8EBAMCB4AwDQYJKoZIhvcNAQELBQAD # ggIBAJBRjqcoyldrNrAPsE6g8A3YadJhaz7YlOKzdzqJ01qm/OTOlh9fXPz+de8b # oywoofx5ZT+cSlpl5wCEVdfzUA5CQS0nS02/zULXE9RVhkOwjE565/bS2caiBbSl # cpb0Dcod9Qv6pAvEJjacs2pDtBt/LjhoDpCfRKuJwPu0MFX6Gw5YIFrhKc3RZ0Xc # ly99oDqkr6y4xSqb+ChFamgU4msQlmQ5SIRt2IFM2u3JxuWdkgP33jKvyIldOgM1 # GnWcOl4HE66l5hJhNLTJnZeODDBQt8BlPQFXhQlinQ/Vjp2ANsx4Plxdi0FbaNFW # LRS3enOg0BXJgd/BrzwilWEp/K9dBKF7kTfoEO4S3IptdnrDp1uBeGxwph1k1Vng # BoD4kiLRx0XxiixFGZqLVTnRT0fMIrgA0/3x0lwZJHaS9drb4BBhC3k858xbpWde # m/zb+nbW4EkWa3nrCQTSqU43WI7vxqp5QJKX5S+idMMZPee/1FWJ5o40WOtY1/dE # BkJgc5vb7P/tm49Nl8f2118vL6ue45jV0NrnzmiZt5wHA9qjmkslxDo/ZqoTLeLX # bzIx4YjT5XX49EOyqtR4HUQaylpMwkDYuLbPB0SQYqTWlaVn1OwXEZ/AXmM3S6CM # 8ESw7Wrc+mgYaN6A/21x62WoMaazOTLDAf61X2+V59WEu/7hMIIHcTCCBVmgAwIB # AgITMwAAABXF52ueAptJmQAAAAAAFTANBgkqhkiG9w0BAQsFADCBiDELMAkGA1UE # BhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAc # BgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEyMDAGA1UEAxMpTWljcm9zb2Z0 # IFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IDIwMTAwHhcNMjEwOTMwMTgyMjI1 # WhcNMzAwOTMwMTgzMjI1WjB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGlu # Z3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBv # cmF0aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMDCC # AiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAOThpkzntHIhC3miy9ckeb0O # 1YLT/e6cBwfSqWxOdcjKNVf2AX9sSuDivbk+F2Az/1xPx2b3lVNxWuJ+Slr+uDZn # hUYjDLWNE893MsAQGOhgfWpSg0S3po5GawcU88V29YZQ3MFEyHFcUTE3oAo4bo3t # 1w/YJlN8OWECesSq/XJprx2rrPY2vjUmZNqYO7oaezOtgFt+jBAcnVL+tuhiJdxq # D89d9P6OU8/W7IVWTe/dvI2k45GPsjksUZzpcGkNyjYtcI4xyDUoveO0hyTD4MmP # frVUj9z6BVWYbWg7mka97aSueik3rMvrg0XnRm7KMtXAhjBcTyziYrLNueKNiOSW # rAFKu75xqRdbZ2De+JKRHh09/SDPc31BmkZ1zcRfNN0Sidb9pSB9fvzZnkXftnIv # 231fgLrbqn427DZM9ituqBJR6L8FA6PRc6ZNN3SUHDSCD/AQ8rdHGO2n6Jl8P0zb # r17C89XYcz1DTsEzOUyOArxCaC4Q6oRRRuLRvWoYWmEBc8pnol7XKHYC4jMYcten # IPDC+hIK12NvDMk2ZItboKaDIV1fMHSRlJTYuVD5C4lh8zYGNRiER9vcG9H9stQc # xWv2XFJRXRLbJbqvUAV6bMURHXLvjflSxIUXk8A8FdsaN8cIFRg/eKtFtvUeh17a # j54WcmnGrnu3tz5q4i6tAgMBAAGjggHdMIIB2TASBgkrBgEEAYI3FQEEBQIDAQAB # MCMGCSsGAQQBgjcVAgQWBBQqp1L+ZMSavoKRPEY1Kc8Q/y8E7jAdBgNVHQ4EFgQU # n6cVXQBeYl2D9OXSZacbUzUZ6XIwXAYDVR0gBFUwUzBRBgwrBgEEAYI3TIN9AQEw # QTA/BggrBgEFBQcCARYzaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9E # b2NzL1JlcG9zaXRvcnkuaHRtMBMGA1UdJQQMMAoGCCsGAQUFBwMIMBkGCSsGAQQB # gjcUAgQMHgoAUwB1AGIAQwBBMAsGA1UdDwQEAwIBhjAPBgNVHRMBAf8EBTADAQH/ # MB8GA1UdIwQYMBaAFNX2VsuP6KJcYmjRPZSQW9fOmhjEMFYGA1UdHwRPME0wS6BJ # oEeGRWh0dHA6Ly9jcmwubWljcm9zb2Z0LmNvbS9wa2kvY3JsL3Byb2R1Y3RzL01p # Y1Jvb0NlckF1dF8yMDEwLTA2LTIzLmNybDBaBggrBgEFBQcBAQROMEwwSgYIKwYB # BQUHMAKGPmh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2kvY2VydHMvTWljUm9v # Q2VyQXV0XzIwMTAtMDYtMjMuY3J0MA0GCSqGSIb3DQEBCwUAA4ICAQCdVX38Kq3h # LB9nATEkW+Geckv8qW/qXBS2Pk5HZHixBpOXPTEztTnXwnE2P9pkbHzQdTltuw8x # 5MKP+2zRoZQYIu7pZmc6U03dmLq2HnjYNi6cqYJWAAOwBb6J6Gngugnue99qb74p # y27YP0h1AdkY3m2CDPVtI1TkeFN1JFe53Z/zjj3G82jfZfakVqr3lbYoVSfQJL1A # oL8ZthISEV09J+BAljis9/kpicO8F7BUhUKz/AyeixmJ5/ALaoHCgRlCGVJ1ijbC # HcNhcy4sa3tuPywJeBTpkbKpW99Jo3QMvOyRgNI95ko+ZjtPu4b6MhrZlvSP9pEB # 9s7GdP32THJvEKt1MMU0sHrYUP4KWN1APMdUbZ1jdEgssU5HLcEUBHG/ZPkkvnNt # yo4JvbMBV0lUZNlz138eW0QBjloZkWsNn6Qo3GcZKCS6OEuabvshVGtqRRFHqfG3 # rsjoiV5PndLQTHa1V1QJsWkBRH58oWFsc/4Ku+xBZj1p/cvBQUl+fpO+y/g75LcV # v7TOPqUxUYS8vwLBgqJ7Fx0ViY1w/ue10CgaiQuPNtq6TPmb/wrpNPgkNWcr4A24 # 5oyZ1uEi6vAnQj0llOZ0dFtq0Z4+7X6gMTN9vMvpe784cETRkPHIqzqKOghif9lw # Y1NNje6CbaUFEMFxBmoQtB1VM1izoXBm8qGCAtQwggI9AgEBMIIBAKGB2KSB1TCB # 0jELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1Jl # ZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEtMCsGA1UECxMk # TWljcm9zb2Z0IElyZWxhbmQgT3BlcmF0aW9ucyBMaW1pdGVkMSYwJAYDVQQLEx1U # aGFsZXMgVFNTIEVTTjoxNzlFLTRCQjAtODI0NjElMCMGA1UEAxMcTWljcm9zb2Z0 # IFRpbWUtU3RhbXAgU2VydmljZaIjCgEBMAcGBSsOAwIaAxUAjTCfa9dUWY9D1rt7 # pPmkBxdyLFWggYMwgYCkfjB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGlu # Z3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBv # cmF0aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMDAN # BgkqhkiG9w0BAQUFAAIFAOi0vhYwIhgPMjAyMzA5MjAwODQwNTRaGA8yMDIzMDky # MTA4NDA1NFowdDA6BgorBgEEAYRZCgQBMSwwKjAKAgUA6LS+FgIBADAHAgEAAgIF # gzAHAgEAAgISODAKAgUA6LYPlgIBADA2BgorBgEEAYRZCgQCMSgwJjAMBgorBgEE # AYRZCgMCoAowCAIBAAIDB6EgoQowCAIBAAIDAYagMA0GCSqGSIb3DQEBBQUAA4GB # AFwSesQsvkl2ADan0OZo6AUYvDMW7HGCC1jfm8Ke2Ed3ugRdUyFSv9GJjnSAnSBn # 6Gsb0FtR4gWnhrwF7lCotMCYx/RJbHs/3OY3M4qqWL9oltWN2EUduTDtRQqBNr1/ # yKxgZcBwF6dEdLz0jTjXmdyW8y92fAGjCa03XMBcPBGUMYIEDTCCBAkCAQEwgZMw # fDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1Jl # ZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMd # TWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIwMTACEzMAAAG1rRrf14VwbRMAAQAA # AbUwDQYJYIZIAWUDBAIBBQCgggFKMBoGCSqGSIb3DQEJAzENBgsqhkiG9w0BCRAB # BDAvBgkqhkiG9w0BCQQxIgQg7LxP1++vHmBGBXPk+/Yhfy0a7rMPFFd1xHJG9rbd # 4KowgfoGCyqGSIb3DQEJEAIvMYHqMIHnMIHkMIG9BCAnyg01LWhnFon2HNzlZyKa # e2JJ9EvCXJVc65QIBfHIgzCBmDCBgKR+MHwxCzAJBgNVBAYTAlVTMRMwEQYDVQQI # EwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3Nv # ZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1pY3Jvc29mdCBUaW1lLVN0YW1wIFBD # QSAyMDEwAhMzAAABta0a39eFcG0TAAEAAAG1MCIEIPGo4LpjHPY5MhcNDIJj/Ir2 # e8zWyNpJXxvpsKQsqQV8MA0GCSqGSIb3DQEBCwUABIICADdlVc+Gb0riVh1rnCpx # dsrHRPyepuHoP6DMxxxD0nJe1C543XoedH7OwrNuMIVcGTGPAhdWJkLOnNMExzxA # 0/ZUt/BQ1SR92fKvn3K6E1lHNzUyAAekK5oxJNptE3QoZXfJJOtjp8+WYSutyx3k # zdEaW3GsFjP9JClBxQ7ZwIkNJeZ5STAk5xYaG6cQD3lJ3lRrVF4Mh4O7aLtI0r20 # itze3ARComJtXp8upWyJ061l/XH1lkfBBHGIC3BdVc94xSM5f1OOhkdHdUuaqYh9 # vzOXc3ujvf+EMuleIZadjZVulJJjkAiqjUPXJNI3OID7VXeGv8QetUbCWPG6axNU # kh5Oj4/p6PtwDOjDy+zc47XI+Eeg8SxbTxaGidIaaDcDq88OMCxRY5L0ebAItHnf # dpAaebddN9PyA2l7VjXPksX2haPyEOG3arxVGS4ZU7KIXx0mcKh7r6O12u79l2c6 # wUCkXxcdTlqEg0G+eudQhe8Hvyw3X6x4h4FQ8Eb25Nj2K0/qUWy99JEfrjZcYNcj # FQ2INFFCK6GMT62rGfrC7Pi7dMyBiuk3SoplGeFkvl44R2VcHmhultWNmkMPXJYP # gJSYW0MBR9SFU1Zw7yzTcYwda2/6YHAhiCpDpFuaNzms7p5cxh/l0RZOMw/vZLmx # GTQQrCxzbPXPhogaMmXZYbxP # SIG # End signature block |