link管理

链接快照平台

输入网页链接，自动生成快照
标签化管理网页链接

Get raw events (deprecated)

This method enables the user to retrieve raw events from EPM according to a predefined filter.

This method was deprecated in v22.3 and has been replaced by the following APIs:

For inbox events: Get detailed raw events

For audit events: Get policy audit raw event details

Make sure there are no spaces in the URL.

The following characters are not supported in URL parameter values: + & %

API version

Type: String

Valid value: Version number. Format is x.x.x.x (for example, 11.5.0.1)

Default value: Latest version

Mandatory: No

ID of a set that the user has permission to view, generated in the Get sets list API

Type: String

Valid value: Set ID

Mandatory: Yes

Unique file ID generated in the Get aggregated events (deprecated) API

Type: String

Valid value: Valid file ID

Mandatory: Yes

Token generated in the EPM authentication or SAML authentication API.

Type: String

Valid value: basic <Token>

Mandatory: Yes

Event type. Specify All or a list of event types separated by commas.

For the list of event types, see Event Types .

Type: String

Valid values: All

Mandatory: No

Only show events since the given date

Type: Date

Valid values: ISO-8601 to format dates and UTC time zone - YYYY-MM-DDThh:mm:ssZ

If DateFrom and DateTo are not valued, only events from the last day are returned

Mandatory: No

Only show events until the given date

Type: Date

Valid values: ISO-8601 to format dates and UTC time zone - YYYY-MM-DDThh:mm:ssZ

If DateFrom and DateTo are not valued, only events from the last day are returned

Mandatory: No

Determines if the event has justification details

Not relevant for ThreatDetection

Type: String

Valid values: All/WithJustification

Default values: All

Mandatory: No

Name of the policy that triggers the event. Wildcards are supported.

Not relevant for ApplicationEvents

Type: String

Valid values: The following wildcards:

"xxx xxx" - filters the exact value between the quotes

xxx xxx - filters anything that contains the string

*xxx xxx* - filters anything that contains the string between the *

xxx* - filters all strings that start with the value before the *

*xxx - filters all strings that end with the value after the *

Mandatory: No

"Events": [
{
"EventId": "string",
"Computer": "string",
"User": "string",
"UserIsAdmin": boolean,
"TimeFirst": "date/time", "TimeLast": "date/time", "EventType": "string",
"AgentEventCount": number, "Justification": "string",
"SourceType": "string",
"SourceName": "string",
"AccessTargetName": "string", ],
"TotalCount": number,
"FilteredCount": number

First time this event was detected by EPM . If AgentEventCount =1, TimeFirst will be identical to TimeLast

ISO-8601 to format dates and UTC time zone - YYYY-MM-DDThh:mm:ssZ

Type: DateTime

Last time this event was detected by EPM . If AgentEventCount =1, TimeFirst will be identical to TimeLast

ISO-8601 to format dates and UTC time zone - YYYY-MM-DDThh:mm:ssZ

Type: DateTime

If the restrict event action is allow or restrict. This is relevant for Restrict events only.

Type: String

Category: All

/Product-Doc/OnlineHelp /Portal/Content/Resources/_TopNav/cc_Portal.htm Endpoint Privilege Manager SaaS 23.12.1

Version 23.12.1

推荐文章

冷冷的麦片 · HTTP协议详解 - 通过C++实现HTTP服务剖析HTTP协议

昨天

小眼睛的羊肉串 · DateAndTime.DateAdd 方法 (Microsoft.VisualBasic) | Microsoft Learn

昨天

活泼的鸭蛋 · 类型‘T’上不存在属性'id‘。(2339) Typescript泛型错误 -

昨天

朝气蓬勃的圣诞树 · 如何使用ARMS前端监控监控支付宝小程序_应用实时监控服务(ARMS)-阿里云帮助中心

22 小时前

稳重的树叶 · 如何设计一个优雅健壮的 Android WebView？_android 定制webview

2 小时前

有爱心的灌汤包 · 联想小新Pro 14锐龙版开箱简评_笔记本电脑_什么值得买

4 月前

欢快的电池 · 中国-俄罗斯建交70周年金银纪念币_百度百科

5 月前

豪爽的肉夹馍 · dadda-translate-crx/src/components/vue/Result-panel.vue at master · waynecz/dadda-translate-crx · Gi

6 月前

打酱油的西装 · 小米汽车青睐的这些创新零部件，来自嘉定企业_上观新闻

6 月前

长情的充电器 · TypeScript+Vue3 - Allis - 博客园

10 月前