지금 지원 담당자와 채팅
지원 담당자와 채팅

One Identity Safeguard for Privileged Sessions 7.3.1 - REST API Reference Guide

Introduction Using the SPS REST API Basic settings User management and access control Managing SPS General connection settings HTTP connections Citrix ICA connections MSSQL connections RDP connections SSH connections Telnet connections VNC connections Search, retrieve, download, and index sessions Reporting Health and maintenance Advanced authentication and authorization Completing the Welcome Wizard using REST Enable and configure analytics using REST REST API examples

Rsync backup policy

Querying backup policy

Querying backup policy request

curl --cookie cookies --request GET https://<IP-address-of-SPS>/api/configuration/policies/backup_policies/99275192754364c2b1bd04

Querying backup policy response

{
    "body": {
        "include_node_id_in_path": true,
        "name": "backup_rsync",
        "notification_event": {
            "file_count_limit": 10240,
            "send_filelist": true,
            "type": "none"
        },
        "start_times": [
            "8:00"
        ],
        "target": {
            "auth_key": {
                "key": "XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX",
                "meta": {
                    "href": "/api/configuration/private_keys/XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX"
                }
            },
            "host_key": "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAAAYQCsU80IBrJbOlqCi03qZK+FtgS783VKE1TVZBtDQlsXJ9FXu6KNBvqvSAjcXiWY+izqn+P14UVRY1vOdz7WwLIWOUoTKHfPMqv3bdjwM4Bhd26POWSFyDf46yx1YzvMwgc=",
            "path": "/data/backup",
            "port": 1122,
            "server": {
                "selection": "ip",
                "value": "192.168.122.1"
            },
            "type": "rsync",
            "username": "user1"
        }
    },
    "key": "99275192754364c2b1bd04"
}

SSH Settings Policies

Querying all SSH settings policies

Querying all SSH settings policies request

curl --cookie cookies --request GET https://<IP-address-of-SPS>/api/configuration/ssh/settings_policies
Querying the default SSH settings policy

Querying the default SSH settings policy request

curl --cookie cookies --request GET https://<IP-address-of-SPS>/api/configuration/ssh/settings_policies/-300

Querying the default SSH settings policy response

{
    "key": "-300",
    "body": {
        "name": "default",
        "timeout": 600,
        "inactivity_timeout": {
            "enabled": false
        },
        "preconnect_channel_check": false,
        "greeting": "",
        "userauth_banner": "",
        "software_version": "SSH",
        "strict_mode": true,
        "client_side_algorithms": {
            "kex": ["diffie-hellman-group14-sha1", "diffie-hellman-group1-sha1"],
            "cipher": ["aes128-ctr", "aes192-ctr", "aes256-ctr", "aes128-cbc", "blowfish-cbc",
                       "cast128-cbc", "aes192-cbc", "aes256-cbc", "3des-cbc", "arcfour"],
            "mac": ["hmac-sha1", "hmac-md5"],
            "compression": ["none"],
            "hostkey": ["ecdsa-sha2-nistp256", "ecdsa-sha2-nistp384", "ecdsa-sha2-nistp521", "ssh-ed25519","rsa-sha2-512","rsa-sha2-256","ssh-rsa"]
        },
        "server_side_algorithms": {
            "kex": ["diffie-hellman-group14-sha1", "diffie-hellman-group1-sha1"],
            "cipher": ["aes128-ctr", "aes192-ctr", "aes256-ctr", "aes128-cbc", "blowfish-cbc",
                       "cast128-cbc", "aes192-cbc", "aes256-cbc", "3des-cbc", "arcfour"],
            "mac": ["hmac-sha1", "hmac-md5"],
            "compression": ["none"],
            "hostkey": ["ecdsa-sha2-nistp256", "ecdsa-sha2-nistp384", "ecdsa-sha2-nistp521", "ssh-ed25519","rsa-sha2-512","rsa-sha2-256","ssh-rsa"]
        }
    },
    "meta": {
        "first": "/api/configuration/ssh/settings_policies/-300",
        "href": "/api/configuration/ssh/settings_policies/-300",
        "last": "/api/configuration/ssh/settings_policies/93246150354ca6b9a48fba",
        "next": "/api/configuration/ssh/settings_policies/93246150354ca6b9a48fba",
        "parent": "/api/configuration/ssh/settings_policies",
        "previous": null,
        "transaction": "/api/transaction"
    }
}

Search fields available in reports

Querying search fields available in reports

Querying search fields available in reports response

{
  "body": {
    "event": {
      "fields": [
        {
        "description": "The command line without prompt in commands",
        "field": "action",
        "name": "Event Action",
        "presentable": true,
        "searchable": true,
        "type": "string"
        },
        {
          "description": "The id of the channel the event belongs to.",
          "field": "channel_id",
          "name": "Channel ID",
          "presentable": true,
          "searchable": true,
          "type": "string"
        },
        {
          "description": "The command executed, or the window title detected in the channel (for example, ls, exit, or Firefox).",
          "field": "content",
          "name": "Event content",
          "presentable": true,
          "searchable": true,
          "type": "string"
        },
        {
          "description": "The details of the protocol used for the operation.",
          "field": "details",
          "name": "Protocol details",
          "presentable": true,
          "searchable": true,
          "type": "string"
        },
        {
          "description": "The identifier of the vault event.",
          "field": "event_id",
          "name": "Event ID",
          "presentable": true,
          "searchable": true,
          "type": "string"
        },
        {
          "description": "The type of the operation that occurred, for example, Create file (in the case of FTP) or GET (in the case of HTTP).",
          "field": "operation",
          "name": "Operation",
          "presentable": true,
          "searchable": true,
          "type": "string"
        },
        {
          "description": "The path (if any) used by the operation that occurred.",
          "field": "path",
          "name": "Path",
          "presentable": true,
          "searchable": true,
          "type": "string"
        },
        {
          "description": "The identifier of the event within the audit trail (.zat file).",
          "field": "record_id",
          "name": "Event ID",
          "presentable": true,
          "searchable": true,
          "type": "long"
        },
        {
          "description": "The status code of the protocol response (if any) returned.",
          "field": "response_code",
          "name": "Response code",
          "presentable": true,
          "searchable": true,
          "type": "long"
        },
        {
          "description": "The date when the event happened.",
          "field": "time",
          "name": "Event date",
          "presentable": false,
          "searchable": true,
          "type": "date"
        },
        {
          "description": "The type of the event, for example, command, screen_content, window_title.",
          "documentation": "https://support.oneidentity.com/one-identity-safeguard-for-privileged-sessions/technical-documents",
          "field": "type",
          "name": "Event type",
          "presentable": true,
          "searchable": true,
          "type": "string"
        }
      ]
    }
  }
}

Transaction handling

Querying transaction status

Querying transaction status request

curl --cookie cookies --request GET https://<IP-address-of-SPS>/api/transaction

Querying transaction status response

{
    "body": {
        "commit_message": "optional",
        "status": "closed"
    },
    "key": "transaction",
    "meta": {
        "href": "/api/transaction",
        "parent": "/api"
    }
}

The document was helpful.

평가 결과 선택

I easily found the information I needed.

평가 결과 선택