API Discussions
Discussions and questions regarding the Cato Networks APIBest Practices
Find Cato Network API best practices, tips, and tricks
Recent Content
Event Integration - Secureworks Taegis
I opened a support case and was directed to post here instead. We are attempting to setup an event integration from Cato to Secureworks Taegis following this KB: Integrating Cato Events with AWS S3 – Cato Learning Center but when we get to the point of entering the bucket name, we are unable because Secureworks provides an S3 alias and not a bucket name. The Cato portal specifically prevents using an alias. How can we get this integration configured?
Updating Firewall Rules with Bulk Addresses/Domains
I am new to learning how to programmatically configure using API but running across a few stumbling blocks. If there are some basic examples of showing how to use the API to do perform common tasks such as updating firewall rules that would be fantastic. I have been using the Cato API Explorer in docker, the GraphGL Explorer , API documentation but my experience using APIs is slowing me down. Task to Accomplish We have a large amount of domains that we would like to block into a specific internet firewall rule. Question What are the steps and different queries and mutations I need to make this happen? How do I update the destinations without deleting the existing destination domains that are already there? Issues locked a firewall rule from editing, due to not knowing what prerequisites were needed such as queries/mutations. (This is resolved after doing a publishPolicyRevision mutation) testing with a single destination domain replaces all of the existing destination domains that were already present instead of appending a new one My response shows all rules with name and dest. domains even though only the specific rule ID is being updated. Current Config mutation RuleUpdate { policy(accountId: "xxx") { internetFirewall { createPolicyRevision( input: {name: "Dest-Domain-Updates", description: "Dest Domain Update"} ) { policy { audit { publishedBy publishedTime } revision { changes createdTime description id name updatedTime } rules { rule { destination { domain } } } } } updateRule( input: {id: "xxxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx", rule: {destination: {domain: "[123testdomain.com"}}} ) { errors { errorCode errorMessage } } publishPolicyRevision(input: {name: "Dest-Domain-Updates"}) { policy { rules { rule { destination { domain } } } } } } } } Goal Further the use of the API to make config changes and create objects within CMA, especially bulk items.
Programmatic Access to User-Defined Groups and Membership Management in Cato
Hi team, I'm looking for a programmatic way to: 1- List all user-defined groups and their members under the Resources section in Cato. 2- Add or remove members from these groups. Is there support for this via GraphQL or any other available API that Cato provides? Appreciate any guidance or documentation you can point me to.Bulk import error: Concurrent edits in account for Site
Hi Guys, We need to import static hosts reservations into CATO. I found this helpful documentation: https://registry.terraform.io/providers/catonetworks/cato/latest/docs/guides/guide_cato_static_host_from_csv However when running the import for multiple hosts I'm getting the following error: The first host is created successfully, however the others are not working because of error: Concurrent edits in account for Site Any ideas on how to solve this?Account Access Request's mutation API
Hi everyone, The new account access request method enables us to manage permissions flexibly, but has also complicated the workflow. Manually requesting permissions for multiple support members and order members when an account is created is a significant burden. We are considering whether this could be simplified using the API, but we have not found any relevant commands. Have these been implemented, or being planning? Thank you,How can I isolate traffic between two specific sites using the Cato API?
Hello Catoers, I'm trying to get an overview of data transferred between sites via the Cato tunnel. I considered using the accountMetrics query to analyze bytesUpstream and bytesDownstream, but that only provides aggregate data without specifying the destination. Would using eventsFeed - filtering by source and destination - be a better approach? Or is there another query that directly correlates traffic between specific sites? Thanks for your guidance.API for LDAP Sync
Hi, Team. We have checked the KB and API documents and there are only two ways to sync LDAP users which is through Daily Sync feature and 'Sync Now' button. We have asked to Cato Support that if there is a way to automatically sync in defined minutes or hours. (ex. set 5 minutes to automatically sync LDAP users) The response was we have to RFE for that feature. Then I asked them if there is API for LDAP Sync and they lead me to here. So, currently, is there any API query for LDAP Sync we can use?
addSocketSite Location lookup incomplete
Trying to add sites to tenant via API Using addSocketSite in Postman. Fails, reporting: {"errors":[{"message":"timezone [US/Pacific] is unknown","path":["site","addSocketSite","input","siteLocation","timezone"]}],"data":{"site":{"addSocketSite":null}}} Inspecting the results of the lookup, I can see that UA has three timezones When you lookup US there is only one timezone. If I am importing 15 sites only the sites in Mountain timezone succeed. Is this a production tool or method?
