接口功能介紹

操作審計-可疑操作上下文接口。

接口約束

此功能為收費功能。確認已經購買服務器配額，并且開啟服務器防護。如果沒有購買配額，可按照頁面提示進行購買。如果沒有開啟防護，請在服務器列表頁開啟機器防護。

URI

POST /v1/audit/queryOperationContext

路徑參數
無

Query參數
無

請求參數

請求頭header參數

請求體body參數

響應參數

表 data

表 record

枚舉參數

無

請求示例

請求url

無

請求頭header

{"regionid": "100054c0416811e9a6690242ac110002","Content-Type":"application/json","urlType": "CTAPI"}

請求體body

{"timestamp":"2022-10-18 16:49:08","agentGuid":"6910579D-1477-4966-AD0B-E9CDF52D1E0B"}

響應示例

{"statusCode": "200","error": "CTCSSCN_000000","message": "查詢成功!","returnObj": [{"timestamp": "2022-10-18 16:48:45","record": {"loginUser": "root","cmd": "cat /",}},{"timestamp": "2022-10-18 10:22:56","record": {"loginUser": "root","cmd": "ls",},"agent": null,"initCount": 0,"passCount": 0,"noPassCount": 0,"threatHostCount": 0}{"timestamp": "2022-10-17 16:48:13","record": {"loginUser": "root","cmd": "ls /var/run",}},{"timestamp": "2022-10-17 16:48:07","operationTime": null,"status": null,"record": {"loginUser": "root","cmd": "ps -ef | grep rsyslogd",}},{"timestamp": "2022-10-17 16:47:49","record": {"cmd": "cat /var/run/syslogd.pid",}},{"timestamp": "2022-10-17 14:46:41","record": {"loginUser": "root","cmd": "man logrotate",},}]}

狀態碼

請參考

錯誤碼

請參考