Unity API Forum
Designed to discuss Webroot Unity API features, general questions, and ideas
- 84 Topics
- 199 Replies
Hi I am trying to save data from queering API and in C# the data has to be serialized. I do not want to create custom class if not necessary and I want to be able to deserialize to the to the same Site and Endpoint calls. Looks like call Site is not serializable. Have any one tried to save raw data to a file? Thanks,
I made a relatively big discovery today, and would like to share. It may greatly help those developing their own API scripts. For some time support has said that there is no way to determine the key in use on a particular system systematically. The only information available is the HPL Key value in the registry at “HKLM:\SOFTWARE\Wow6432Node\WRData\HPL” and this is an encrypted value for the key, so it isn’t possible to determine the key in use, although it would be the same value for all endpoints in a site. I discovered that this isn’t entirely true. The HPL registry key is a MD5 hash of the site key (without dashes). So while you can’t determine the site key from the MD5 hash, you can verify the MD5 hash if you have the site key. Since querying endpoint information via the API requires the Site ID as well, it was not possible previously to systematically determine the site ID required without using and providing a site name match. Name matches can be unreliable. The use of the H
I'm wondering if there is some type of rate limit or maximum requests from a specific IP. Recently, some of my automation has stopped working and a little bit into the script, requests just start timing out, though this was working previously. Is there something I should be doing differently?
We have had a lot of questions around getting started with authentication, so I wanted to make sure there are some materials that help explain this. The Webroot Unity API uses OAUTH 2 to generate Access and Refresh tokens. Each token has a different TTL, and is designed for specific usage. Best practices dictate that an access token should only be generated using GSM credentials once during development, and then after that, refresh tokens are used to keep the product authorized. Here are some flow charts to help explain how these different tokens are generated and used: [img]https://d1qy7qyune0vt1.cloudfront.net/webroot-en/attachment/27604i2E003E48AAD84B19.jpg[/img] Initially, you will use your GSM credentials to generate your first Access token. This is a combination of your GSM username/password, and your API credentials that have been generated in the GSM console under Account Settings > API Access. (For more information on generating these credentials, please visit [url=h
Hi, We have an requirement where we want to fetch below Webroot DNS/Threats details using API, We have searched webroot Unity API for the same but with no success Botnet Commands and Control Blocked Requested Categories vs. Blocked Categories Web Threats Blocked URLs
Hello all! A little while back we released a couple of WSAT (Webroot Security Awareness Training) APIs that allow you find out user interaction with active Phishing and Training Campaigns. [url=https://unityapi.webrootcloudav.com/Docs/en/APIDoc/APIReference#apiReference-Console-ConsoleGSM-group-11]https://unityapi.webrootcloudav.com/Docs/en/APIDoc/APIReference#apiReference-Console-ConsoleGSM-group-11[/url] Have you tried these yet? What do you think? Would you like more WSAT functionality in Unity?
Hello everyone,, As the Qts. When you use an API, you're using an interface that lets the program you write control or access a program somebody else wrote. As an analogy, suppose your program is a robot and you want your robot to get into a car and drive across the city. When you drive a car, do you care how it works inside? Do you care if it's a V6 or V8? That it's a traditional gas engine, a disel, or a hybrid? All of those things affect how the car works, but those aren't the interface. The interface of a car is the steering wheel, gearshift, and pedals - plus all of the other levers and controls to access all of the car's other functions. So if you were hypothetically building a robot to control a car, you don't have to teach it how an internal combustion engine works. You have to teach it how to accelerate, brake, steer, and shift gears, by working those controls. So now let's relate this back to a programming example. Twitter has an API. That means you can write a program that a
Hi all, Recently I joined Webroot to work with customer advocates in the Luminaries program. I've talked with a few customers and our API product manager about Unity API. During these discussions I've learned that many customers haven’t used Unity API yet, and that community members on this forum are early adopters. I'm planning an informal webinar for Luminaries to share Unity API use cases and I'd like to invite power users to join. If you'd like to showcase how you use the API, please let me know. I could hand presenter view over to you for a few minutes if you’d like. And, if you wanted to create a slide or two, I'd be happy to help. Look forward to working with you all. Cheers, Emma
I do not know anything about code. I use Webroot Bussiness Antivirus for me personally and my clients. I would like to give my clients a portal where they can see there machines and if any threats have been found at anytime. Is there a current software that does this or is there an easy way to do this. Feedback all welcome. Also, is there any integrations with Webroot that people cant live with out. Any software that partners so well with Webroot that you would recommend me tinkering with. Thanks, Chase B
Hi, I wanted to make you aware we are currently running a beta for custom reporting tool we have created. The tool uses a simplified a PowerShell Cmdlet to pull Unity API data and populate excel based templates. It’s super flexible and really powerful if you deep dive into the scripts. If you are an MSP and want to have play it’s a really cool tool that can help your business provide value added reports to the you customers. You can find out more here where you can get access to a closed beta forum. We would love to know what you think of it. ChrisProduct Manager Integrations
Powershell script that provides an additional method of sending/managing Webroot Agent Commands and usage reports via Unity API.
Hello,In my down time I’ve been messing around with some powershell scripting. During this time I created the following script to allow an additional method of sending Agent Commands, changing Agent policies, or running basic usage reports using the Webroot.This script can be converted to an exe quite easily and used in that manner as well if desired.Unfortunately due to the length of the script exceeding character limits here, I’ve had to post it to Github. You can view it here:https://github.com/x-drybk/wret No coding professional, so constructive criticism is welcome.
The Community Team and I have been working with [user=64941]cbullas[/user] recently on the NEW [url=https://community.webroot.com/integrations-48]Integrations forum[/url]. We'll have some exciting news to share in time but for now, I wanted let you know that we have moved the existing Unity Feature Request area to the larger [url=https://community.webroot.com/submit-a-business-feature-request-30]Business Feature Request section[/url]. All of the existing API specific requests have been imported over there. In the future, if you have an idea about Unity or our integrations, please submit those ideas there.
Hi, Is there a way to figure out via API the `status` values for Endpoints that I can see at the website under **Endpoint Protection > Group Management **? Ive tried all APIs but couldnt get the info.. [img]https://d1qy7qyune0vt1.cloudfront.net/webroot-en/attachment/f3cddc37-1e37-4d4f-b6d9-2ea5b9174f24.png[/img]
Not sure where to report bugs, but noticed another one today: The Automate plugin is sorting the "Last Seen" date as text instead of date. The MySQL column is type datetime, but it's probably just not being imported into the proper variable type in the C# code. [img]https://d1qy7qyune0vt1.cloudfront.net/webroot-en/attachment/35623i54F384C4F9BE10AB.png[/img]
"deep scan"... dang you, 4k! Trying to determine how to kick off a deep scan on an endpoint without usng the web gui. I have 50 endpoints. Need to do it programmatically, and I can run scripts on each EP if needed, or is hitting the API going to allow this to happen to one/group?
I'm querying the API for sites and then each site for its endpoints, after about 4-5 queries I started getting a gateway timeout and now even trying to get a token times out. Are there ongoing issues or is there some type of rate limit I should be following? I'm not getting a 429 so I'm leaning towards ongoing issues but figured I'd check anyways.
As I am sure many people are experiencing with Windows 10 updates, I work for an MSP with a bunch of duplicate entries being created because of this. Right now I found a base Powershell Script written by Adam Morgan(from this community) that spits out a CSV of all of the duplicate entries that we can then find and remove as needed. The links in the forums on other questions regarding automation now just link back to the main community site. I was curious if anyone has tried to write a script using the API to accomplish this is some instance.
Background: I work for an MSP in a sysadmin role so please forgive my limited dev skills. I'm looking at using the Unity API to integrate Webroot endpoint data into a LOB application. I have experience with making REST API calls via PowerShell to set custom properties and variables based on response data. I can create an API key in our GSM, but I'm not seeing any options to restrict the key to specific sites, datasets, read-only, etc permissions. Ideally, I'd like to limit key permissions to only allow a specific user account to make 'GET SkyStatus' calls to endpoints in a single site. If possible, I'd also like to restrict API key usage to a specific IP address. Can anyone provide further guidance on hardening GSM console security when using the Unity API? Thanks, Dan
My policy audit script returned blank PolicyName fields today, and the endpoint request in Postman shows a null PolicyName for the few agents I looked at. Looks like maybe they've replaced it with the "PolicyId" field and have blanked-out "PolicyName"? Update: Also getting lots of 504 timeouts today...
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.