I have the Netskope REST API Events v2 integration configured within Postman and queries are successful. I am wondering is there a method to limit the query by user, as well as number of days?
My use case is as employees is leaving the company, I would like to just add there user name into the query, and have it pull the last 30 days of Alert, Application, and Incident logs for them, so I can export in CSV format. Thanks
I would consider writing a basic script to handle this with the DataExport APIs.
OR
Configure a Cloud Exchange business rule to filter the logs for you and send them to a plugin of your choice.
I have not personally tested this, but the /api/v2/events/data/alert endpoint allows for a query string. You may be able to add user as an argument.
If you haven't already registered, now is a good time to do so. After you register, you can post to the community, receive email notifications, and lots more. It's quick and it's free! Create an account.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
