Get WAAS Agentless Audit Events
GET/api/v32.07/audits/firewall/app/agentless
x-prisma-cloud-target-env: {"permission":"monitorWAAS"}
Retrieves all agentless Web-Application and API Security (WAAS) audit events.
Note: These are based on violations of WAAS policies defined under Defend > WAAS > Agentless > Agentless WAAS Policy.
cURL Request
Refer to the following example cURL command that retrieves all agentless WAAS audit events:
$ curl -k \
-u <USER> \
-H 'Content-Type: application/json' \
-X GET \
"https://<CONSOLE>/api/v<VERSION>/audits/firewall/app/agentless"
cURL Response
{
"_id": "",
"time": "0001-01-01T00:00:00Z",
"hostname": "",
"fqdn": "",
"effect": "",
"ruleName": "",
"ruleAppID": "",
"msg": "",
"host": false,
"containerName": "",
"containerId": "",
"imageName": "",
"appID": "",
"type": "customRule",
"count": 60,
"url": "",
"subnet": "",
"requestHeaders": "",
"attackField": {},
"eventID": ""
}
Request
Responses
- 200
- default