Cisco AMP for Endpoints API

GET /v1/computers/user_activity

Description

Query Parameters

Name	Type	Example Values
`q`	String	johndoe
`limit`	Integer	5
`offset`	Integer	0

Show Response Fields

Name	Type	Description
version	String
metadata.links.self	String
metadata.results.total	Integer
metadata.results.current_item_count	Integer
metadata.results.index	Integer
metadata.results.items_per_page	Integer
data	Array
data[].connector_guid	GUID
data[].hostname	String
data[].active	Boolean
data[].links.computer	String
data[].links.trajectory	String
data[].links.group	String

Write

Preview

Describe this action in markdown

Examples

Fetch list of computers that have observed activity by given user name

Request

Requires Authorization

GET /v1/computers/user_activity?q=johndoe&limit=5&offset=0

Headers

accept: application/json
content-type: application/json
authorization: Basic FILTERED

cURL Edit, then copy and paste on your terminal

curl -X GET \
-H 'accept: application/json' \
-H 'content-type: application/json' \
--compressed -H 'Accept-Encoding: gzip, deflate' \
-u YOUR_API_CLIENT_ID \
'https://api.eu.amp.cisco.com/v1/computers/user_activity?q=johndoe&limit=5&offset=0'

Response

Actual Response

strict-transport-security: max-age=31536000
content-type: application/json; charset=utf-8
status: 200 OK
x-ratelimit-limit: 3000
x-ratelimit-reset: 1855
x-ratelimit-remaining: 2920
x-frame-options: SAMEORIGIN
x-ratelimit-resetdate: 2019-01-09T17:44:06Z
transfer-encoding: chunked

{
  "version": "v1.2.0",
  "metadata": {
    "links": {
      "self": "https://api.eu.amp.cisco.com/v1/computers/user_activity?q=johndoe&limit=5&offset=0"
    },
    "results": {
      "total": 5,
      "current_item_count": 5,
      "index": 0,
      "items_per_page": 5
    }
  },
  "data": [
    {
      "connector_guid": "13d7e7c9-a351-4ad8-bd48-85d338de9b66",
      "hostname": "Demo_Low_Prev_Retro",
      "active": false,
      "links": {
        "computer": "https://api.eu.amp.cisco.com/v1/computers/13d7e7c9-a351-4ad8-bd48-85d338de9b66",
        "trajectory": "https://api.eu.amp.cisco.com/v1/computers/13d7e7c9-a351-4ad8-bd48-85d338de9b66/user_trajectory?q=johndoe",
        "group": "https://api.eu.amp.cisco.com/v1/groups/b077d6bc-bbdf-42f7-8838-a06053fbd98a"
      }
    },
    {
      "connector_guid": "6422df21-1d8d-4b36-9498-f5e7b9cdf706",
      "hostname": "Demo_SFEicar",
      "active": true,
      "links": {
        "computer": "https://api.eu.amp.cisco.com/v1/computers/6422df21-1d8d-4b36-9498-f5e7b9cdf706",
        "trajectory": "https://api.eu.amp.cisco.com/v1/computers/6422df21-1d8d-4b36-9498-f5e7b9cdf706/user_trajectory?q=johndoe",
        "group": "https://api.eu.amp.cisco.com/v1/groups/b077d6bc-bbdf-42f7-8838-a06053fbd98a"
      }
    },
    {
      "connector_guid": "c51fbf68-b8e6-4fa1-ac76-5a52c6345ed9",
      "hostname": "Demo_TDSS",
      "active": true,
      "links": {
        "computer": "https://api.eu.amp.cisco.com/v1/computers/c51fbf68-b8e6-4fa1-ac76-5a52c6345ed9",
        "trajectory": "https://api.eu.amp.cisco.com/v1/computers/c51fbf68-b8e6-4fa1-ac76-5a52c6345ed9/user_trajectory?q=johndoe",
        "group": "https://api.eu.amp.cisco.com/v1/groups/b077d6bc-bbdf-42f7-8838-a06053fbd98a"
      }
    },
    {
      "connector_guid": "d7fbcdb6-0a14-4e39-867e-02f5e1649497",
      "hostname": "Demo_Plugx",
      "active": false,
      "links": {
        "computer": "https://api.eu.amp.cisco.com/v1/computers/d7fbcdb6-0a14-4e39-867e-02f5e1649497",
        "trajectory": "https://api.eu.amp.cisco.com/v1/computers/d7fbcdb6-0a14-4e39-867e-02f5e1649497/user_trajectory?q=johndoe",
        "group": "https://api.eu.amp.cisco.com/v1/groups/b077d6bc-bbdf-42f7-8838-a06053fbd98a"
      }
    },
    {
      "connector_guid": "d8775b6a-3f59-433e-b1ab-3a54d8ccbc46",
      "hostname": "Demo_Stabuniq",
      "active": true,
      "links": {
        "computer": "https://api.eu.amp.cisco.com/v1/computers/d8775b6a-3f59-433e-b1ab-3a54d8ccbc46",
        "trajectory": "https://api.eu.amp.cisco.com/v1/computers/d8775b6a-3f59-433e-b1ab-3a54d8ccbc46/user_trajectory?q=johndoe",
        "group": "https://api.eu.amp.cisco.com/v1/groups/b077d6bc-bbdf-42f7-8838-a06053fbd98a"
      }
    }
  ]
}