Query Event
Query event.
Basic Parameters
| Parameter | Description |
|---|---|
| Description | The description of the event. |
| Event IDs | A comma-separated list of event IDs. |
| Event Types | The event types. |
| Scopes | The scopes for the request. |
Advanced Parameters
| Parameter | Description |
|---|---|
| Confidence Indicator | The confidence indicator of the event. |
| End Date | Limits the search results to any entities created before the given end date range. |
| Event States | The event states. |
| Severities | The event severities. |
| Start Date | Limits the search results to any entities created within the given start date range. |
Example Output
{
"responseData": [
{
"actions": [
{
"actionType": "Action Type",
"createTime": "Create Time",
"relatedEntityId": "Sec Event Id"
}
],
"additionalData": {},
"availableEventActions": [
{
"actionName": "Actionname",
"actionParameter": {}
}
],
"confidenceIndicator": "",
"customerId": "Customerid",
"data": "Data",
"description": "Description",
"entityId": "Entityid",
"eventCreated": "Time",
"eventId": "Eventid",
"saas": "Saas",
"severity": "Severity",
"state": "State",
"type": "Type"
}
],
"responseEnvelope": {
"additionalText": "",
"recordsNumber": 0,
"requestId": "Requestid",
"responseCode": 0,
"responseText": "",
"scrollId": "Scrollid"
}
}
Workflow Library Example
Query Event with Check Point Harmony and Send Results Via Email
Preview this Workflow on desktop