Recent Discussions
A simple example in Python
import json import ssl import urllib.parse import urllib.request headers = { "x-api-key": MY_API_KEY, "Content-Type": "application/json" } body = { "operationName": "accountSnapshot", "variables": {"accountID":MY_ACCOUNT_ID}, "query": ''' query accountSnapshot($accountID:ID!) { accountSnapshot(accountID:$accountID) { id } }''' } request = urllib.request.Request(url='https://api.catonetworks.com/api/v1/graphql2', data=json.dumps(body).encode("ascii"), headers=headers) response = urllib.request.urlopen(request, context=ssl._create_unverified_context()) print(json.loads(response.read().decode("utf-8","replace")))
API Request to get all SDP users
Hi everyone, I'm trying to get all users within my Cato platform. Like in Access > Users when you select SDP Users Activity. I cannot find any direct way to do it, maybe i'm missing something ? I tried with AccountSnapshot but here you can only find connected users, it is also stated that if I want users that are offline I need to specify the ID, is it the only way to do it ? Thanks, Billy
Cloning Firewall rules
Ever notice how Cato defaults are not Cato best practices. I have a preferred layout for Internet Firewall and WAN Firewall rules. I have them in multiple sections for business rules and best practice rules. I am wanting to created a pristine template that I can apply to a new tenant that sets up all of my preferences. I am pretty fluent with Postman and python. Any bread crumbs or ideas on how to back up the Internet Rules from one tenant and push them in to a net new tenant? Any ideas are greatly appreciated. Thanks, Brian
How do you make an API request that lists IP address of LAN and WAN interfaces ?
I need to retrieve several pieces of information using API requests : - full list of IP ranges for LAN interfaces (type : Native, VLAN, Routed) [screenshot] - IP addresses of the WAN interfaces (socket IP) In the "entityLookUp" request, I can only find the site's native IP address (VLAN, Routed?) and in the "accountSnapshot" request, there is no internal address. Thank for your time
API for LDAP Sync
Hi, Team. We have checked the KB and API documents and there are only two ways to sync LDAP users which is through Daily Sync feature and 'Sync Now' button. We have asked to Cato Support that if there is a way to automatically sync in defined minutes or hours. (ex. set 5 minutes to automatically sync LDAP users) The response was we have to RFE for that feature. Then I asked them if there is API for LDAP Sync and they lead me to here. So, currently, is there any API query for LDAP Sync we can use?Bypassing Cato via WAN Bypass and Split Tunnel
We need to add around 200 subnets to bypass Cato. My understanding is that they need to be added to all sites under the Site Configuration/Router/Bypass/Destination and for all SDP users via Access/Client Access Control/Split Tunnel policy. We have nearly 90 sites. Manually adding 200 subnets to 90 sites doesn't seem like a good time. Is this possible via the API? If so, can you point me toward the correct commands.
