stack kb security-endpoint-management-api endpoint-unisolate-action cli command

Auth required

		elastic stack kb security-endpoint-management-api endpoint-unisolate-action \
  --endpoint-ids <endpoint-ids> \
  [options]
		
	

Release an isolated endpoint

Behaviour flags:

--dry-run — validate all inputs and exit without performing any action

Options

--endpoint-ids string[] required: List of endpoint IDs (cannot contain empty strings). Max of 250.
--agent-type string: List of agent types to retrieve. Defaults to endpoint.
--alert-ids string[]: If this action is associated with any alerts, they can be specified here. The action will be logged in any cases associated with the specified alerts. Max of 50.
--case-ids string[]: The IDs of cases where the action taken will be logged. Max of 50.
--comment string: Optional comment
--parameters string: Optional parameters object
--input-file string: path to a JSON file to use as command input
--[no-]dry-run: validate all inputs and exit without performing any action (preview changes without applying them)