IAM
Prisma Cloud identity and access management (IAM) security provides:
- Visiblity—Query all relevant IAM entities
- Gonvernance—Monitor your cloud environment for overly-used permissions
- Response—Automatically remediate permissions
The IAM security endpoints enable you to investigate IAM data programmatically.
See Primsa Cloud IAM Security for more information.
Error Handling
Like other Prisma Cloud public API requests, the IAM security API requests return standard HTTP response codes. Unlike most other CSPM API error handling, IAM security API error responses do not include an x-redlock-status in the response header.
Pagination
You can control the number of items in a response for endpoints that support pagination. Use request parameter limit to control the maximum number of items in a response. If the response includes data.nextPageToken, use data.nextPageToken as the request parameter pageToken in a request for the next page of data.
The following table summarizes the request parameters for pagination:
Request Parameter | Description |
---|---|
limit | Maximum number of items to return in a page. |
pageToken | Use the data.nextPageToken value from the previous response object to return the next page of data. |
📄️ Get Permissions
Returns the results of a given [IAM query](https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-rql-reference/rql-reference/iam-query.html).
📄️ Get Permissions Next Page
Given a request parameter **pageToken**, returns the next page of permissions data. You can find the value for **pageToken** from the response object of a previous request to [Get Permissions](/prisma-cloud/api/cspm/get-permissions-with-post).
📄️ Get Permissions Access
Given a permission ID and an
📄️ Get Permissions Access Next Page
Given a request parameter **pageToken**, returns the next page of permissions data.
📄️ Get Remediation
Returns a list of remediations for the specified alert IDs.
📄️ Get IAM Query
Returns the IAM query for the specified alert ID.
📄️ Get Query Suggestions
Given a partial IAM query, returns suggestions to append to your query either to create a complete valid IAM query or to build a further partial query. Also indicates whether or not the query you input is already a valid IAM query.