SIEM High Rest API Usage
SIEM High Rest API usage
Configuration
query
NOT device_product:SIEM_Agent AND facility:Unknown AND(EventType:ip\-10\-63\-27\-190 OR EventType:ip\-10\-63\-26\-180)
config
Key | Value — | — type | aggregation-v1 query | NOT device_product:SIEM_Agent AND facility:Unknown AND(EventType:ip\-10\-63\-27\-190 OR EventType:ip\-10\-63\-26\-180) streams | [5f74fe0891d2ba1b645adb8d] conditions | {expression:null} search_within_ms | 3600000 execute_every_ms | 3600000
Last modified
December 31, 1969