Override Business Units for Assets

Cortex Xpanse REST API

post /public_api/v1/assets/override_bu_tags/
CURL
curl -X POST \ -H "Accept: application/json" \ -H "Content-Type: application/json" -H "authorization: {{api_key}}" -H "x-xdr-auth-id: {{api_key_id}}" \ "https://api-}/public_api/v1/assets/override_bu_tags/" \ -d '{ "request_data" : { "business_units" : [ "business_units", "business_units" ], "filters" : [ { "field" : "name", "value" : "OverrideBusForAsmAssetsFilter_value", "operator" : "in" }, { "field" : "name", "value" : "OverrideBusForAsmAssetsFilter_value", "operator" : "in" } ], "include_subdomains" : true } }'
Request headers
authorization
required
String
api-key
Example: {{api_key}}
x-xdr-auth-id
required
String
api-key-id
Example: {{api_key_id}}
Request
Body
required
request_data
required
filters
optional
Array of objects
field
optional
String (Enum)
Allowed values:
name
has_xdr_agent
ip_address
externally_detected_providers
type
has_active_external_services
mac_addresses
externally_inferred_cves
aws_cloud_tags
gcp_cloud_tags
azure_cloud_tags
tags
business_units_list
ipv6_address
has_bu_overrides
asm_id_list
operator
optional
String (Enum)
Allowed values:
in
contains
neq
eq
not_contains
value
optional

Value that the filter must match. The contents of this field will differ depending on the asset field that you specified for this filter:

  • name: eq, neq - string
  • type: in - list of strings
  • has_xdr_agent: eq, neq - boolean
  • ip_address: eq, neq - string
  • ipv6_address: eq, neq - string
  • externally_detected_providers: contains - string
  • has_active_external_services: eq, neq - boolean
  • mac_addresses: eq, neq - string
  • externally_inferred_cves: contains, not_contains - string
  • tags: contains, not_contains - list of strings
  • business_units_list: contains, not_contains - list of strings in format BU: uuid
  • has_bu_overrides: eq, neq - boolean
  • asm_id_list: in - list of strings
business_units
optional
Array of strings
List of business unit UUIDs to be assigned.
include_subdomains
optional
Boolean
Indicates whether these tags should propagate to subdomains.
Responses

OK

Body
reply
required
Object
assign_tags
required
String
succeeded if request was successful

Bad Request. Got an invalid JSON.

Body
reply
required
Object
The query results upon error.
err_code
optional
String
HTTP response code.
err_msg
optional
String
Error message.
err_extra
optional
String
Additional information describing the error.

Unauthorized access. An issue occurred during authentication. This can indicate an incorrect key, id, or other invalid authentication parameters.

Body
reply
required
Object
The query results upon error.
err_code
optional
String
HTTP response code.
err_msg
optional
String
Error message.
err_extra
optional
String
Additional information describing the error.

Unauthorized access. User does not have the required license type to run this API.

Body
reply
required
Object
The query results upon error.
err_code
optional
String
HTTP response code.
err_msg
optional
String
Error message.
err_extra
optional
String
Additional information describing the error.

Forbidden access. The provided API Key does not have the required RBAC permissions to run this API.

Body
reply
required
Object
The query results upon error.
err_code
optional
String
HTTP response code.
err_msg
optional
String
Error message.
err_extra
optional
String
Additional information describing the error.

Unprocessable Entity

Body
code
optional
Integer
Error code
status
optional
String
Error name
message
optional
String
Error message
errors
optional
Object
Errors

Internal server error. A unified status for API communication type errors.

Body
reply
required
Object
The query results upon error.
err_code
optional
String
HTTP response code.
err_msg
optional
String
Error message.
err_extra
optional
String
Additional information describing the error.