Cohesity Helios

this connector integrates cohesity helios with swimlane turbine prerequisites the cohesity asset requires an api key capabilities this connector provides the following capabilities get helios alerts get ransomeware alerts configurations cohesity helios api key authentication authenticates using an api key configuration parameters parameter description type required url a url to the target host string required apikey api key string required verify ssl verify ssl certificate boolean optional http proxy a proxy to route requests through string optional actions get helios alerts get the list of helios alerts endpoint url v2/mcm/alerts method get input argument name type required description headers object optional http headers for the request regionid string optional this parameter uniquely represents a region and is used for making helios calls to a specific region alertidlist array optional filter by list of alert ids alertstatelist array optional filter by list of alert states alerttypelist array optional filter by list of alert types alertseveritylist array optional filter by list of alert severity types regionids array optional filter by list of region ids clusteridentifiers array optional filter by list of cluster ids startdateusecs number optional specifies the start time of the alerts to be returned all the alerts returned are raised after the specified start time this value should be in unix timestamp epoch in microseconds enddateusecs number optional specifies the end time of the alerts to be returned all the alerts returned are raised before the specified end time this value should be in unix timestamp epoch in microseconds maxalerts number optional specifies maximum number of alerts to return alertcategorylist array optional filter by list of alert categories alerttypebucketlist array optional filter by list of alert type buckets alertpropertykeylist array optional specifies list of the alert property keys to query alertpropertyvaluelist array optional specifies list of the alert property value, multiple values for one key should be joined by ' ' output parameter type description status code number http status code of the response reason string response reason phrase example \[ { "status code" 200, "response headers" { "date" "wed, 20 mar 2024 06 17 44 gmt", "content type" "application/json", "content length" "5", "connection" "keep alive", "x frame options" "sameorigin", "x prisma event id" "850161ab d9e4 46ce 70f0 71f12abaa64c", "content security policy" "frame ancestors 'self';", "x xss protection" "1; mode=block", "x content type options" "nosniff", "referrer policy" "strict origin when cross origin", "x download options" "noopen", "x dns prefetch control" "off", "strict transport security" "max age=31536000; includesubdomains", "feature policy" "camera 'none';microphone 'none';geolocation 'none';encrypted media 'none';paymen " }, "reason" "ok", "json body" \[ {} ] } ] get ransomware alerts get cohesity helios ransomware alerts endpoint url mcm/alerts method get input argument name type required description headers object optional http headers for the request regionid string optional this parameter uniquely represents a region and is used for making helios calls to a specific region alertstatelist array optional filter by list of alert states alertseveritylist array optional filter by list of alert severity types regionids array optional filter by list of region ids clusteridentifiers array optional filter by list of cluster ids startdatetime string optional start datetime in iso format enddatetime string optional start datetime in iso format maxalerts number optional specifies maximum number of alerts to return output parameter type description status code number http status code of the response reason string response reason phrase ransomware alerts array output field ransomware alerts alert id string unique identifier alert name string name of the resource cluster name string name of the resource occurrence time string time value severity string output field severity alert description string output field alert description alert cause string output field alert cause anomalous object name string name of the resource anomalous object env string output field anomalous object env anomaly strength string output field anomaly strength example \[ { "status code" 200, "response headers" { "date" "fri, 05 apr 2024 05 50 40 gmt", "content type" "application/json", "transfer encoding" "chunked", "connection" "keep alive", "x frame options" "sameorigin", "x prisma event id" "d135b113 d6b2 bbc3 a345 7b8cfe643982", "content encoding" "gzip", "vary" "accept encoding", "content security policy" "frame ancestors 'self';", "x xss protection" "1; mode=block", "x content type options" "nosniff", "referrer policy" "strict origin when cross origin", "x download options" "noopen", "x dns prefetch control" "off", "strict transport security" "max age=31536000; includesubdomains" }, "reason" "ok", "json body" { "ransomware alerts" \[] } } ] response headers header description example connection http response header connection keep alive content encoding http response header content encoding gzip content length the length of the response body in bytes 5 content security policy http response header content security policy frame ancestors 'self'; content type the media type of the resource application/json date the date and time at which the message was originated fri, 05 apr 2024 05 50 40 gmt feature policy http response header feature policy camera 'none';microphone 'none';geolocation 'none';encrypted media 'none';payment 'none';usb 'none'; referrer policy http response header referrer policy strict origin when cross origin strict transport security http response header strict transport security max age=31536000; includesubdomains transfer encoding http response header transfer encoding chunked vary http response header vary accept encoding x content type options http response header x content type options nosniff x dns prefetch control http response header x dns prefetch control off x download options http response header x download options noopen x frame options http response header x frame options sameorigin x prisma event id http response header x prisma event id 850161ab d9e4 46ce 70f0 71f12abaa64c x xss protection http response header x xss protection 1; mode=block notes api doc https //developer cohesity com/apidocs/helios/v2 api