get_threat_detection_use_case_info
Run this command to see which types of use cases are included in the threat detection analysis.
This API is available in Guardium V10.1.4 and later.
REST API syntax
This API is available as a REST service with the
GET
method. Call this API as follows:
GET https://[Guardium hostname or IP address]:8443/restAPI/threat_detection_use_case_info
GuardAPI syntax
get_threat_detection_use_case_info parameter=value
Parameters
Parameter | Value type | Description |
---|---|---|
api_target_host | String |
Specifies the target hosts where the API executes. Valid values:
IP addresses must conform to the IP mode of your network. For dual IP mode, use the same IP protocol with which the managed unit is registered with the central manager. For example, if the registration uses IPv6, specify an IPv6 address. The hostname is independent of IP mode and can be used with any mode. |
Examples
To see which use case types are included in the threat detection analysis:
grdapi get_threat_detection_use_case_info
Use case: INSIDER_THREAT - disabled
Use case: GRANTS - enabled
Use case: STP - enabled
Use case: SQL_INJECTION - enabled