Fetches audits for user, domain, or organization.

External Documentation

To learn more, visit the Cisco Domain Protection documentation.

Parameters

ParameterDescription
End DateThe latest date time a search should target. Takes the current date as default.
NameFilter by the name of object (User - email, domain - unicode_domain, organization - symbolic_name).
Object TypeThe type of the endpoint to list audits for.
StartThe offset of the returned records.
Start DateThe earliest date time a search should target. 14 days ago as default.

Example Output

{
	"version": 1,
	"status": "ok",
	"code": 200,
	"audits": {
		"entries": [
			{
				"action": "Generated API Access",
				"filterable_action": "Generated API Access",
				"user": "user@company.com",
				"object": "user@company.com",
				"changes": {},
				"created_at": "2020-08-06 14:02:07.434696+00:00"
			}
		]
	}
}

Workflow Library Example

List Audits with Cisco Domain Protection and Send Results Via Email

Preview this Workflow on desktop

Was this page helpful?