Login
      Contents x
      getIDSEventDetail
        • Print
        • PDF
        Contents

        getIDSEventDetail

          • Print
          • PDF
          Article summary

          Available in Classic and VPC

          Get details of a security event that occurred while using the IDS service.

          Request

          The following describes the request format for the endpoint. The request format is as follows:

          MethodURI
          POST/getIDSEventDetail

          Request headers

          For headers common to Security Monitoring APIs, see Security Monitoring request headers.

          Request body

          The following describes the request body.

          FieldTypeRequiredDescription
          ticketIdStringRequiredUnique number of the IDS security event to view

          Request example

          The following is a sample request.

          curl --location --request POST 'https://securitymonitoring.apigw.ntruss.com/vsecuritymonitoring/v1/getIDSEventDetail'
--header 'x-ncp-apigw-timestamp: {Timestamp}'
--header 'x-ncp-iam-access-key: {Access Key}' 
--header 'x-ncp-apigw-signature-v2: {API Gateway Signature}' 
--data '{
  "ticketId": "526068433"
}'

          Response

          The following describes the response format.

          Response body

          The following describes the response body.

          FieldTypeRequiredDescription
          returnCodeInteger-Processing result code for the request
          lbNameString-Name of the load balancer where the security event was detected
          returnMessageString-Processing result message for the request
          reportString-Security event details
          lbDomainNameString-DNS name of the load balancer where the security event was detected
          lbInstanceNoString-Instance number of the load balancer where the security event was detected

          Response status codes

          For error codes common to Security Monitoring APIs, see Common Security Monitoring error codes.

          Response example

          The following is a sample example.

          {
    "returnCode": 0,
    "lbName": "YOUR_LOAD_BALANCER",
    "returnMessage": "SUCCESS",
    "report": "◆ Attack type description<br>Brute-force is an attack where word combinations from a dictionary or every value that can be inputted are entered to acquire account information.<br>If a brute-force attack is successful, the attacker may take over the system and it may lead to secondary damage such as information leakage and malicious code infection.◆ Requests<br>Configure so that only trusted IPs can have access.<br>Block access for a certain period of time in case of 5 or more failed login attempts.<br>Use a password that is 8 characters or longer, and a combination of English letters, numbers, and special characters.<br>Change the default server access port.",
    "lbDomainName": "***.com",
    "lbInstanceNo": "********"
}
          Was this article helpful?
          What's Next
          Change password!
          Changing your password will log you out immediately. Use the new password to log back in.
          Change profile
          Success!
          First name must have atleast 2 characters. Numbers and special characters are not allowed.
          Last name must have atleast 1 characters. Numbers and special characters are not allowed.
          Enter a valid email
          Enter a valid password
          Your profile has been successfully updated.
          Logout