Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1821
Views
0
Helpful
1
Replies

Reject domain in Sender Verification Exception Table via API.

yevgen1991
Level 1
Level 1

‎08-30-2020 01:39 PM

Hi all!

 

I want to automate blocking some bad domains(@badDomain.xx) using API.

I have the QRadar. After the rule is triggered, qRadar should send the API script to IronPort using API, and "Reject" certain bad domain in "Sender Verification Exception Table".

I have not worked with the API before. Can you tell me which script I need to send from the qRadar to the IronPort?

I have Cisco ESA IronPort C600V.

 

Thanks al!

Labels:
0 Helpful
1 Reply 1

Libin Varghese
Cisco Employee
Cisco Employee

‎11-01-2020 11:30 PM

API documentation for Async OS 13.0 is available here:

https://www.cisco.com/c/en/us/td/docs/security/esa/esa13-0/api/b_ESA_API_Guide/test_chapter_0110.html

 

Its limited to tracking, reporting, quarantine features currently.

More would be added in future releases.

 

Regards,

Libin

0 Helpful
Customers Also Viewed These Support Documents