Add Global Scan Settings
POST/api/v33.01/settings/scan
x-prisma-cloud-target-env: {"permission":"systemOperations"}
Configures the Prisma Cloud Compute scanner settings.
For more information, see Configure Scanning.
cURL Request
Refer to the following example cURL request that configures the following scan intervals:
- Scan registries and serverless functions once per week.
- Scan images, containers, and hosts once per day.
$ curl -k \
-u <USER> \
-H 'Content-Type: application/json' \
-X POST \
-d \
'{
"imagesScanPeriodMs":86400000,
"containersScanPeriodMs": 86400000,
"systemScanPeriodMs": 86400000,
"serverlessScanPeriodMs": 604800000,
"registryScanPeriodMs":604800000
}' \
"https://<CONSOLE>/api/v<VERSION>/settings/scan"
Request
- application/json
Body
AgentlessScanPeriodMS is the agentless scan period in ms - validated for minimum 1 hour or disabled with zero.
CloudPlatformsScanPeriodMS is the cloud platforms scan period in ms - validated for minimum 1 hour or disabled with zero.
ContainersScanPeriodMS is the container scan period in ms - validated for minimum 1 hour or disabled with zero.
ExtractArchive indicates whether to search within archive during scan is enabled.
ImageScanPeriodMS is the image scan period in ms - validated for minimum 1 hour or disabled with zero.
IncludeJsDependencies indicates whether to include packages from the "dependencies".
RegistryScanPeriodMS is the registry scan period in ms - validated for minimum 1 hour or disabled with zero.
RegistryScanRetentionDays is the number of days to keep deleted registry images.
ScanRunningImages indicates only images that are used by containers should be used.
ServerlessScanPeriodMS is the serverless vulnerability scan period in ms - validated for minimum 1 hour or disabled with zero.
ShowInfraContainers indicates infra containers should be shown.
ShowNegligibleVulnerabilities indicates whether to display negligible vulnerabilities (low severity or will not be fixed).
SystemScanPeriodMS is the host scan period in ms - validated for minimum 1 hour or disabled with zero.
TASDropletsScanPeriodMS is the TAS scan period in ms - validated for minimum 1 hour or disabled with zero.
VMScanPeriodMS is the VM image scan period in ms - validated for minimum 1 hour or disabled with zero.
Responses
- 200
- default
OK