get_activity_for_account
Gets activity for an account.
Path:
/lib/server/get_activity_for_account.js
Parameters:
| Name | Type | Description |
|---|---|---|
| id | String | The unique ID of the account to retrieve activity for. |
Example Request:
POST /redrock/query
{
"Script":"@/lib/server/get_activity_for_account.js(id:'6c36f6...')"
}
Example Response:
{
"success": true,
"Result": {
"IsAggregate": false,
"Count": 5,
"Columns": [
{
"Name": "When",
"IsHidden": false,
"DDName": "WhenOccurred",
"Title": "When",
"DDTitle": "When Occurred",
"Description": null,
"Type": 3,
"Format": null,
"Width": 0,
"TableKey": "NotAKey",
"ForeignKey": null,
"TableName": "Event"
},
...
],
"FullCount": 5,
"Results": [
{
"Entities": [],
"Row": {
"Detail": "Rdp session has ended on system \"Windows (Brad)\"(11.22.33.44) using local account \"administrator\" by [email protected]",
"EventType": "Cloud.Server.LocalAccount.SessionDisconnect",
"When": "/Date(1521229460151)/",
"AuditId": null
}
},
{
"Entities": [],
"Row": {
"Detail": "[email protected] logged in to system \"Windows (Brad)\"(11.22.33.44) using local account \"administrator\" via Rdp",
"EventType": "Cloud.Server.LocalAccount.SessionStart",
"When": "/Date(1521229444288)/",
"AuditId": "5ce6..."
}
},
...
],
"ReturnID": ""
},
"Message": null,
"MessageID": null,
"Exception": null,
"ErrorID": null,
"ErrorCode": null,
"InnerExceptions": null
}
Updated over 4 years ago