Skip to main content

Get WAAS Agentless Audit Events

GET 

/api/v32.07/audits/firewall/app/agentless

x-prisma-cloud-target-env: {"permission":"monitorWAAS"}

Retrieves all agentless Web-Application and API Security (WAAS) audit events.

Note: These are based on violations of WAAS policies defined under Defend > WAAS > Agentless > Agentless WAAS Policy.

cURL Request

Refer to the following example cURL command that retrieves all agentless WAAS audit events:

$ curl -k \
-u <USER> \
-H 'Content-Type: application/json' \
-X GET \
"https://<CONSOLE>/api/v<VERSION>/audits/firewall/app/agentless"

cURL Response

{
"_id": "",
"time": "0001-01-01T00:00:00Z",
"hostname": "",
"fqdn": "",
"effect": "",
"ruleName": "",
"ruleAppID": "",
"msg": "",
"host": false,
"containerName": "",
"containerId": "",
"imageName": "",
"appID": "",
"type": "customRule",
"count": 60,
"url": "",
"subnet": "",
"requestHeaders": "",
"attackField": {},
"eventID": ""
}

Request

Responses