logo

Knowledge Base

Access official resources from Carbon Black experts

IMPORTANT ANNOUNCEMENT: On May 6, 2024, Carbon Black User eXchange (UeX) and Case Management will move to a new platform!
The Community will be in read-only mode starting April 19th, 7:00 AM PDT. Check out the blog post!
You will still be able to use the case portal to create and interact with your support cases until the transition, view more information here!

Carbon Black Cloud: Alert by ID API call fails to fetch events

Carbon Black Cloud: Alert by ID API call fails to fetch events

Environment

  • Carbon Black Cloud Console: All versions
    • Endpoint Standard 
  • Endpoint Standard REST API: Version 3
    • Alerts API

Symptoms

  • The API call to /integrationServices/v3/alert/<alert_id> fails to return the events that triggered that alert
  • The Events field on the alert object is an empty array
  • Results example (deviceinfo and threatinfo have been scrubbed in this example. Notice there is no data next to the Events filed): 
    {
    "orgId": 1234,
    "deviceInfo": {
        ...
    },
    "threatInfo": {
        ...
    },
    "events": [],
    "success": true,
    "message": "Success"
}

    Cause

    Issue currently under investigation

    Resolution

    Carbon Black is currently investigating the root cause and fix for this issue

    Related Content


    Was this article helpful? Yes No
    100% helpful (1/1)
    Article Information
    Author:
    CB_Support
    Creation Date:
    ‎10-04-2021
    Views:
    288
    Contributors
    logo

    Copyright © 2005-2023 Broadcom. All Rights Reserved. The term “Broadcom” refers to Broadcom Inc. and/or its subsidiaries.