Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2774
Views
20
Helpful
4
Replies

Cisco Umbrella Reporting v2 API Unauthorized Access Python

Go to solution
igarcia012
Level 1
Level 1

‎01-09-2022 03:42 PM

Hi,

 

I've been trying to fetch our Cisco Umbrella logs using the Reporting v2 API but unsuccessful to do so, I always get a b'{"meta":{},"data":{"error":"unauthorized"}}' error message.

 

I have been successful in getting our data using Cisco Devnet's online GUI-based test tool (Which can be found here: https://developer.cisco.com/docs/cloud-security/?_ga=2.225835218.917962487.1641766486-616012252.1641766486#!activity-all) so I don't think it's an issue with the client and secret token or bearer.

 

For the code, I used the Python template provided in the knowledge base in the link above.

 

Additional notes is that using the tool above, fetching the data only works if "Proxy" mode is enabled (Configuration - Use Proxy) 

0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Brian Sak
Cisco Employee
Cisco Employee

‎01-16-2022 08:35 AM

I was able to get this to work using the code samples provided here.  I used my Reporting API credentials which in turn created a bearer token that is used in the header of the request.  My API call to the reporting API is provided below.

 

import requests
url = "https://reports.api.umbrella.com/v2/organizations/{org id}/activity?from=-14days&to=now&limit=1&offset=0"

payload={}
headers = {
  'Authorization': 'Bearer {token}'
}

response = requests.request("GET", url, headers=headers, data=payload)

print(response.text)

 

 

View solution in original post

Go to solution
fittedsheet
Level 1
Level 1
In response to fittedsheet

‎05-27-2022 08:12 AM

Please disregard this question. I was trying to pass the API key in place of the token. User error on my part.

View solution in original post

4 Replies 4

Go to solution
Brian Sak
Cisco Employee
Cisco Employee

‎01-16-2022 08:35 AM

I was able to get this to work using the code samples provided here.  I used my Reporting API credentials which in turn created a bearer token that is used in the header of the request.  My API call to the reporting API is provided below.

 

import requests
url = "https://reports.api.umbrella.com/v2/organizations/{org id}/activity?from=-14days&to=now&limit=1&offset=0"

payload={}
headers = {
  'Authorization': 'Bearer {token}'
}

response = requests.request("GET", url, headers=headers, data=payload)

print(response.text)

 

 

Go to solution
fittedsheet
Level 1
Level 1
In response to Brian Sak

‎05-26-2022 12:20 PM

This code did not work for me in Python . I've tried the both 'bearer' and 'basic' in the authorization header. It also failed in the Cisco DevNet environment. Both instances return the b'{"meta":{},"data":{"error":"unauthorized"}}' error message. Is there a setting in Umbrella itself that has to be configured to allow API calls?

 

Thanks.

0 Helpful

Go to solution
fittedsheet
Level 1
Level 1
In response to fittedsheet

‎05-27-2022 08:12 AM

Please disregard this question. I was trying to pass the API key in place of the token. User error on my part.

Go to solution
Brian Sak
Cisco Employee
Cisco Employee
In response to fittedsheet

‎05-27-2022 09:54 AM

Your timing is good, I had just pulled all of the code in to run it against my lab environment to hopefully find the issue.  Glad you're up and running.

Customers Also Viewed These Support Documents