Retrieves logs according to the given filter.

Parameters

ParameterDescription
FromThe start time of the time frame for log retrieval.
QueryA search query to filter the logs.
ToThe end time of the time frame for log retrieval.
TypeSelect the type of logs to retrieve.

Example Output

{
	"logs": [
		{
			"severity": "Informational",
			"product_family": "Network",
			"product": "WEB_API",
			"sequencenum": "1",
			"subject": "Administrator Logout",
			"session_uid": "255c7ff6-913d-4283-929b-4c4f356271f4",
			"sendtotrackerasadvancedauditlog": "0",
			"type": "Audit",
			"orig_log_server_attr": [
				{
					"isCHKPObject": "true",
					"uuid": "030a3519-7c8f-5244-baeb-e8a6d86fb406",
					"resolved": "i-0bf47b0c949589471"
				}
			],
			"administrator": "WEB_API",
			"domain_name": "SMC User",
			"orig_log_server": "10.3.3.234",
			"additional_info": "logout localhost",
			"orig": "i-0bf47b0c949589471",
			"marker": "@A@@B@1687813200@C@778",
			"orig_log_server_ip": "10.3.3.234",
			"stored": "true",
			"calc_desc": "WEB_API logged out from WEB_API",
			"client_ip": "10.3.3.234",
			"time": "2023-06-27T13:33:59Z",
			"id": "0a0303ea-5d96-040c-649a-e54700000000",
			"operation": "Log Out"
		},
		{
			"severity": "Informational",
			"product_family": "Network",
			"product": "WEB_API",
			"sequencenum": "1",
			"subject": "Administrator Login",
			"sendtotrackerasadvancedauditlog": "0",
			"type": "Audit",
			"orig_log_server_attr": [
				{
					"isCHKPObject": "true",
					"uuid": "030a3519-7c8f-5244-baeb-e8a6d86fb406",
					"resolved": "i-0bf47b0c949589471"
				}
			],
			"administrator": "WEB_API",
			"orig_log_server": "10.3.3.234",
			"additional_info": "login by localhost",
			"orig": "i-0bf47b0c949589471",
			"marker": "@A@@B@1687813200@C@777",
			"orig_log_server_ip": "10.3.3.234",
			"stored": "true",
			"calc_desc": "WEB_API logged ln to WEB_API",
			"client_ip": "10.3.3.234",
			"time": "2023-06-27T13:33:58Z",
			"id": "0a0303ea-5d96-040c-649a-e54600000000",
			"operation": "Log In"
		}
	],
	"logs-count": 2,
	"query-id": "admin_19ec8f52-34a3-4129-b992-544604a7d1b9"
}

Workflow Library Example

Get Logs with Check Point Management and Send Results Via Email

Preview this Workflow on desktop