Trend Micro Cloud One 1.0.0
App Vendor: Trend Micro
App Category: Endpoint Security
Connector Version: 1.0.0
API Version: 1.0.0
About App
Trend Micro Cloud One application can automatically protect new and existing workloads, even against unknown threats, with techniques like machine learning and virtual patching.
Trend Micro Cloud One app is configured with Orchestrate to perform the following actions:
Action Name | Description |
|---|---|
Describe Computers | This action describes a computer. |
List Computers | This action lists the computers. |
List Configurations | This action lists all anti-malware configurations. |
List Directory | This action lists all directory lists. |
List IPs | This action retrieves the IP lists. |
List MAC | This action retrieves the MAC lists. |
Modify IP List | This action modifies an IP list. |
Modify MAC List | This action modifies a MAC list. |
Search Computer | This action searches computers. |
Search IP Lists | This action searches IP lists. |
Search MAC Lists | This action searches MAC lists. |
Configuration Parameters
The following configuration parameters are required for the Trend Micro Cloud One app to communicate with the Trend Micro Cloud One enterprise application. The parameters can be configured by creating instances in the app.
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Base URL | Enter the region-specific base URL to connect to the Trend Micro Cloud One application. Example: "https://workload.{region_name}.cloudone.trendmicro.com/api" | Text | Required | |
API Token | Enter the API token to authenticate with the Trend Micro Cloud One application. | Password | Required |
Action: Describe Computers
This action describes a computer.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Computer ID | Enter the ID of a computer that needs to be described. Example: 1 | Integer | Required | You can retrieve a computer ID by using the action List Computers. |
Overrides | Choose to display overrides defined for a computer. Example: false | Boolean | Optional | Allowed values:
Default value: false For more information on overrides parameter, see Overrides |
Expand | Choose to retrieve the required information about a computer. Example: "all" | Text | Optional | Default value: none none retrieves only basic computer information such as Policy ID and hostname. For information on allowed values of Expand parameter, see Expand. |
Example Request
[
{
"computer_id": 1,
"overrides": false,
"expand": "all"
}
]Action: List Computers
This action lists computers.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Overrides | Choose to display overrides defined for a computer. Example: false | Boolean | Optional | Allowed values:
Default value: false For more information on overrides parameter, see Overrides. |
Expand | Choose to retrieve the required information about a computer. Example: "all" | Text | Optional | Default value: none none retrieves only basic computer information such as Policy ID and hostname. For more information on allowed values of Expand parameter, see Expand. |
Example Request
[
{
"overrides": false,
"expand": "all"
}
]Action: List Configurations
This action lists the anti-malware configurations.
Action Input Parameters
This action does not require any action input parameters.
Action: List Directory
This action retrieves the directory lists.
Action Input Parameters
This action does require any action input parameters.
Action: List IPs
This action retrieves the IP lists.
Action Input Parameters
This action does not require any action input parameters.
Action: List MAC
This action retrieves the MAC lists.
Action Input Parameters
This action does not require any action input parameters.
Action: Modify IP List
This action modifies an IP list.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
IP ID | Enter the ID of the IP list that needs to be modified. Example: "1" | Text | Required | |
Name | Enter the name of the IP list. Example: "ip_list" | Text | Optional | |
Items | Enter the list of comma-delimited IP addresses. Example: $LIST[192.168.2.0./24, 192.168.2.0/16] | List | Optional | |
Description | Enter a description of the IP list. Example: 'modified an IP list' | Text | Optional |
Example Request
[
{
"ip_id": "1",
"name": "mac_list",
"items": ["192.168.2.0./24", "192.168.2.0/255.255.255.0"]
"description": "modified an IP list"
}
]Action: Modify MAC List
This action modifies a MAC list.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
MAC ID | Enter the ID of the MAC list that you need to modify. Example: "1" | Text | Required | You can retrieve a MAC ID by using the action List MAC. |
Name | Enter the name of the MAC list. Example: "maclist" | Text | Optional | |
Items | Enter a list of comma-delimited MAC addresses. Example: $LIST["00:00:5e:00:53:af", "00:00:8e:00:xx:af "] | List | Optional | |
Description | Enter a description of the MAC list. Example: "modified a mac list" | Text | Optional |
Example Request
[
{
"mac_id": "1",
"name": "mac_list",
"items": ["00:00:5e:00:xx:af", "00:00:8e:00:xx:af"],
"description": "modified a Mac list"
}
]Action: Search Computer
This action searches computers.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Overrides | Choose to display overrides defined for a computer. Example: false | Boolean | Optional | Allowed values:
Default value: false For more information on overrides parameter, see Overrides. |
Expand | Choose to retrieve the required information about computers. Example: "all" | Text | Optional | Default value: none none retrieves only basic computer information such as Policy ID and hostname. For more information on allowed values of Expand parameter, see Expand. |
Limit | Enter the maximum number of objects that needs to be returned. Example: 4000 | Integer | Optional | Default value: 5000 |
Search Criteria | Enter the search criteria to filter objects. Example: $JSON[[{'booleantest': true,'numerictest': 'less-than','numericvalue': 0,'numericvaluelist': [0]}]] | Any | Optional | |
Sort by ID | Enter true to sort the response by the object ID. Example: true | Boolean | Optional | Default value: false Allowed values:
|
Example Request
[
{
"overrides":false,
"expand": "all",
"limit":4000,
"criteria":{
"booleantest":true,
"numerictest":"less-than",
"numericvalue":0,
"numericvaluelist":[
0
]
},
"sort":true
}
]OverridesAction: Search IP Lists
This action searches IP lists.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Limit | Enter the maximum number of objects that needs to be returned. Example: 4000 | Integer | Optional | Default value: 5000 |
Search Criteria | Enter search criteria to filter objects. Example: $JSON[{'booleantest': true,'numerictest': 'less-than','numericvalue': 0,'numericvaluelist': [0]}] | Any | Optional | |
Sort by ID | Enter true to sort the response by object ID. Example: true | Boolean | Optional | Default value: false Allowed values:
|
Example Request
[
{
"limit":4000,
"criteria":{
"booleantest":true,
"numerictest":"less-than",
"numericvalue":0,
"numericvaluelist":[
0
]
},
"sort":true
}
]Action: Search MAC Lists
This action searches MAC lists.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Limit | Enter the maximum number of objects that needs to be returned. Example: 5000 | Integer | Optional | Default value: 5000 |
Search Criteria | Enter search criteria to filter objects. Example: $JSON[{'booleantest': true,'numerictest': 'less-than','numericvalue': 0,'numericvaluelist': [0]}] | Any | Optional | |
Sort by ID | Enter true to sort the response by the object ID. Example: false | Boolean | Optional | Default value: false Allowed values:
|
Example Request
[
{
"limit":4000,
"criteria":{
"booleantest":true,
"numerictest":"less-than",
"numericvalue":0,
"numericvaluelist":[
0
]
},
"sort":true
}
]