execute_incidentGenProcess
This command generates incidents based on a defined query against the policy violations log.
This command is the equivalent of running Run Once Now from the Incident Generation Process page.
This API is available in Guardium V9.5 and later.
REST API syntax
This API is available as a REST service with the
PUT
method. Call this API as follows:
PUT https://[Guardium hostname or IP address]:8443/restAPI/execute_incident_gen_process
GuardAPI syntax
execute_incidentGenProcess parameter=value
Parameters
Parameter | Value type | Description |
---|---|---|
processId | Integer | Required. The process ID of the incident. |
api_target_host | String |
Specifies the target hosts where the API executes. Valid values:
IP addresses must conform to the IP mode of your network. For dual IP mode, use the same IP protocol with which the managed unit is registered with the central manager. For example, if the registration uses IPv6, specify an IPv6 address. The hostname is independent of IP mode and can be used with any mode. |
GuardAPI example
grdapi execute_incidentGenProcess processId=20003