API Issues #3
Comments
|
Where do you see the query parameter documented for event-search? That hasn't been implemented yet. |
Here https://apidocs.securitycloud.symantec.com/#/doc?id=ses_event_search
|
|
This was accidentally published too early. The "query" field is expected to be available next month. We'll correct the documentation. Thanks for letting us know. |
|
Thank you very much for the clarification, I look forward to the update |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I've been trying to retrieve specific events using the query parameter with the Event Search API module, however, when I get the response, it seems that the parameter doesn't work. The response shows many events that have no relation to the query made.
I have checked many "Lucene format" expressions but none have worked.
Also as for the insight module, it returns the first time and the last time a file has been seen, however it seems to be the global date on all symantec platforms. ¿Is there no way to see the first and last time a file was seen within my company only?
The text was updated successfully, but these errors were encountered: