Start an Enriched Events Search (v2)
POST {{cb_url}}/api/investigate/v2/orgs/{{cb_org_key}}/enriched_events/search_jobs
Creates an enriched events search job. The results for the search job may be requested using the job_id returned.
RBAC PERMISSIONS REQUIRED
| Permission (.notation name) | Operation(s) |
|---|---|
| org.search.events | READ |
Request Body
{"criteria"=>"<object>", "exclusions"=>"<object>", "fields"=>["<string>", "<string>"], "query"=>"<string>", "rows"=>"<long>", "sort"=>[{"field"=>"<string>", "order"=>"<string>"}, {"field"=>"<string>", "order"=>"<string>"}], "start"=>"<long>", "time_range"=>{"end"=>"<string>", "start"=>"<string>", "window"=>"<string>"}}
HEADERS
| Key | Datatype | Required | Description |
|---|---|---|---|
Content-Type | string |