Retrieve All Event Objects for the Authenticated User

Events Include: Policy Actions, Device Addition/Removal, User Addition/Removal

SecuritybearerAuth
Request
query Parameters
page
integer
Default: 0

The page of results you wish to be returned with page numbers starting at 0. See About Automox API - Pagination

countOnly
integer

Use instead of page or limit to retrieve only the total count of events for the organization, or when used with an eventName, retrieve a count of that specific type of event.

Enum: 0 1
policyId
integer or null

Retrieve events for a specific policy.

serverId
integer

Retrieve events for a specific device.

userId
integer

Retrieve events for a specific user.

eventName
string

Name for the event type.

Enum Value Description
org.exceeded_endpoint_limit

Organization Endpoint Limit was exceeded.

saml.user.create

SAML users were created.

slack.app.added

Slack integration was added.

slack.app.reinstalled

Slack integration was reinstalled.

system.add

Devices were added to the Automox organization.

system.delete

Devices were removed from the Automox organization.

system.group.action

A Group action.

system.notification.response

Notification response events.

system.notification.sent

Notification sent events.

system.patch.applied

Patch was successfully installed on a device.

system.patch.failed

Patch failed to install on a device.

system.patch.uninstall

Patch was uninstalled from a device.

system.policy.action

A Policy Action.

user.create

User created in organization.

user.removed

User was removed from organization.

startDate
string <date>

Limit responses to include only events after this date. Format: (YYYY-MM-DD).

endDate
string <date>

Limit responses to include only events before this date. Format: (YYYY-MM-DD).

limit
integer [ 1 .. 500 ]
Default: 500

A limit on the number of results to be returned, between 1 and 500, with a default of 500. Use with page parameter. See About Automox API - Pagination

o
required
integer

Organization ID. Response will include devices for the specified Automox organization. The organization will be assumed based on the API key, if not specified.

Responses
200

successful operation

400

Invalid Request

401

Access token is missing or invalid

403

You do not have permission to perform this action.

404

Entity not found

429

Too many requests

503

Service Unavailable

default

Invalid Request

get/events
Request samples
$apiKey = 'your_automox_api_key'
$headers = @{ "Authorization" = "Bearer $apiKey" }
$url = "https://console.automox.com/api/events?o=0000&limit=2&startDate=2019-05-04&endDate=2019-05-07"
$response = (Invoke-WebRequest -Method Get -Uri $url -Headers $headers).Content
Response samples
application/json
{
  • "id": 250624,
  • "name": "system.add",
  • "user_id": 754125,
  • "server_id": 621453,
  • "organization_id": 8427961,
  • "policy_id": 123456,
  • "server_name": "Test Device",
  • "data": {
    • "ip": "204.168.24.35",
    • "os": "Windows",
    • "systemname": "Test Device"
    },
  • "policy_name": "Test Policy",
  • "policy_type_name": "patch",
  • "create_time": "2021-07-01T00:00:00Z"
}