I bought the Prisma Cloud product.
When I register the necessary account for the product in the https://subscribe.redlock.io/register.html, it always failed.
Given that I am programming a custom https client
When I invoke CWPP APIs over https
Then I encounter SSLErrors
[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate in certificate chainWhere can I get a .pem or .crt fi
...
Hi- I'm trying to use the API with Python and am having some trouble getting authorized to obtain data using the x-redlock-auth request header.
First, let me add the disclaimer that I'm no Python expert so the help is appreciated even if it seems bas
...
I am new to RQL and I need to build custom queries quickly for compliance reporting an would appreciate if any SME can help with providing RQL queries for the below, rather than myself spending sleepless nights to re-invent the wheel when an expert s
...
I deployed an App-embedded container to an EKS Cluster on Fargate.
I found the defended container in the console, Compute/Monitor/Runtime/App-embedded details.
1) Why can't Users with any role but System Administrator, see the events in that table? Th
...
Hello,
I have created custom compliance report in Prisma Cloud but I would like the the report to show findings by AWS account or AWS account owner. Is this possible?
Most of my API and twistcli commands work but I cannot get an app-embedded defender to be returned…. I have tried these two commands returns the same error…
declare -x PRISMA_CLOUD_COMPUTE_CONSOLE_API_ADDR="https://us-east1.cloud.twistlock.com/us-1-X
...
Given that I want to automate the generation of App Embedded Defender zip file
And there exists a CWPP API documented here, https://prisma.pan.dev/api/cloud/cwpp/defenders#operation/post-defenders-app-embedded
When I attempt to use the example comman
...
I want to see ALL of the docker labels for a scanned image so I am trying this API, https://prisma.pan.dev/api/cloud/cwpp/registry#operation/get-registry
Invoking that API with query parameter name...
curl -k \
Navigating to PCC/Radars/Containers, the console renders a single cluster.
But we have many other clusters where Cloud Discovery reports the Clusters are Defended.
for example...
Why are neither of these two EKS Clusters that I defended with daemon
...
Navigating to PCC/Manage/Defenders/Manage DaemonSets, I see NO EKS daemonsets rendering in the console.
However, Cloud Discovery renders these two EKS clusters Defended=True.
What am I doing wrong? Is it supposed to work this way? Or, What ha
...
Hello everyone,
Is there any RQL that searches for a public ip in the cloud?
I don't know which resource is EC2, ALB...
I only have the public ip and I don't know how to find it.
TKS
Hi All,
Hope you are doing well.
Anyone using Agentless scanning for their GCP env? I have a GCP environment with some restrictions ie org policies applied for skip default network creation, external IPs not allowed (but exempted for test project).
...
For some reason I am unable to see any events being generated for denied IP addresses when running a container defender on one of our hosts.
Did the following:
So my co-worker has implemented some containerized solution and deployed it to EKS.
I used my access key to create a defender.yaml for him.
twistcli defender export kubernetes \
