Get Devices By IDs
Get details on one or more hosts by providing a comma-separatedlist of agent IDs (AID). You can get a host's agent IDs (AIDs) from the "List Devices" action.
Parameters
| Parameter | Description |
|---|---|
| Devices IDs | A comma-separated list of the device IDs to get details on. Can be obtained via the List Devices action. |
Example Output
{
"meta": {
"query_time": 0.001494733,
"powered_by": "device-api",
"trace_id": "213456-123456-12345-23145-12345678"
},
"resources": [
{
"device_id": "1234567891234567893245678",
"cid": "12987343207031295703",
"agent_load_flags": "0",
"agent_local_time": "2023-01-10T23:43:52.948Z",
"agent_version": "6.49.16303.0",
"bios_manufacturer": "Xen",
"bios_version": "4.11.amazon",
"build_number": "0000",
"config_id_base": "12345",
"config_id_build": "12345",
"config_id_platform": "3",
"cpu_signature": "12345",
"external_ip": "0.0000.000.000",
"mac_address": "00-00-00-00-00-00",
"instance_id": "i-123123123123",
"service_provider": "AWS_EC2_V2",
"service_provider_account_id": "12344556789",
"hostname": "WIN-EEEEEEE",
"first_seen": "2022-12-20T07:15:32Z",
"last_seen": "2023-01-18T19:06:21Z",
"local_ip": "000.00.00.000",
"major_version": "6",
"minor_version": "3",
"os_version": "Windows Server 2012 R2",
"os_build": "9600",
"platform_id": "0",
"platform_name": "Windows",
"policies": [
{
"policy_type": "prevention",
"policy_id": "123445678891234567890",
"applied": true,
"settings_hash": "00000",
"assigned_date": "2022-12-20T07:16:48.099669988Z",
"applied_date": "2022-12-20T07:16:55.777285268Z",
"rule_groups": []
}
],
"reduced_functionality_mode": "no",
"device_policies": {
"prevention": {
"policy_type": "prevention",
"policy_id": "123445678891234567890",
"applied": true,
"settings_hash": "00000",
"assigned_date": "2022-12-20T07:16:48.099669988Z",
"applied_date": "2022-12-20T07:16:55.777285268Z",
"rule_groups": []
},
"sensor_update": {
"policy_type": "sensor-update",
"policy_id": "123445678891234567890",
"applied": true,
"settings_hash": "tagged|1;101",
"assigned_date": "2023-01-11T00:13:55.90159299Z",
"applied_date": "2023-01-11T00:16:35.67695318Z",
"uninstall_protection": "ENABLED"
},
"device_control": {
"policy_type": "device-control",
"policy_id": "123445678891234567890",
"applied": false,
"assigned_date": "2023-01-18T19:20:15.474833061Z",
"applied_date": null
},
"global_config": {
"policy_type": "globalconfig",
"policy_id": "123445678891234567890",
"applied": true,
"settings_hash": "00000",
"assigned_date": "2023-01-18T00:06:12.114878175Z",
"applied_date": "2023-01-18T00:12:30.222679248Z"
},
"remote_response": {
"policy_type": "remote-response",
"policy_id": "123445678891234567890",
"applied": true,
"settings_hash": "000000",
"assigned_date": "2022-12-20T10:15:24.029880099Z",
"applied_date": "2022-12-20T10:16:30.644256926Z"
},
"firewall": {
"policy_type": "firewall",
"policy_id": "123445678891234567890",
"applied": true,
"assigned_date": "2022-12-20T07:16:48.099640843Z",
"applied_date": "2022-12-20T07:18:27.779111459Z",
"rule_set_id": "123445678891234567890"
}
},
"groups": ["123445678891234567890", "123445678891234567890"],
"group_hash": "123445678891234567890123445678891234567890123445678891234567890",
"product_type": "3",
"product_type_desc": "Server",
"provision_status": "Provisioned",
"serial_number": "000000-0000-000-00000-000000000",
"service_pack_minor": "0",
"pointer_size": "8",
"status": "normal",
"system_manufacturer": "Xen",
"system_product_name": "HVM domU",
"tags": [],
"modified_timestamp": "2023-01-18T19:20:15Z",
"meta": {
"version": "8486",
"version_string": "3:0000000"
},
"zone_group": "eu-west-1b",
"kernel_version": "6.3.9600.20718",
"connection_ip": "000.00.00.000",
"default_gateway_ip": "000.00.00.000",
"connection_mac_address": "00-00-00-00-00-00"
}
],
"errors": []
}
Workflow Library Example
Remove Crowdstrike Falcon Sensors Inactive in The Last 12 Hours
Preview this Workflow on desktop