REST API reference
Retrieve trace results for a sequence number
Suggest changes
PDFs
GET /protocols/file-access-tracing/events/{node.uuid}/{svm.uuid}/{index}
Introduced In: 9.8
Retrieves trace results for the specified sequence number.
Related ONTAP commands
-
vserver security trace trace-result show
Parameters
| Name | Type | In | Required | Description |
|---|---|---|---|---|
node.uuid |
string |
path |
True |
Node UUID. |
index |
integer |
path |
True |
Sequence number of traced event. |
svm.uuid |
string |
path |
True |
UUID of the SVM to which this object belongs. |
fields |
array[string] |
query |
False |
Specify the fields to return. |
Response
Status: 200, Ok| Name | Type | Description |
|---|---|---|
_links |
||
create_time |
string |
Specifies the time at which the trace event entry was generated. |
filter |
ONTAP allows creation of filters for file access tracing for both CIFS and NFS. These filters have protocols, path, username and client IP based on which file access operations are logged.
|
|
index |
integer |
Specifies the sequence number of the security trace event. |
node |
||
reason |
Displays the allowed or denied reason for the file access tracing events that are generated. |
|
session_id |
integer |
Specifies the CIFS session ID for the file access trace event, this is generated only for CIFS file accesses. |
share |
||
svm |
SVM, applies only to SVM-scoped objects. |
|
volume |
Example response
{
"_links": {
"self": {
"href": "/api/resourcelink"
}
},
"create_time": "2018-06-04T19:00:00Z",
"filter": {
"client_ip": "10.140.68.143",
"index": "1",
"path": "/dir1/dir2",
"protocol": "string",
"svm": {
"_links": {
"self": {
"href": "/api/resourcelink"
}
},
"name": "svm1",
"uuid": "02c9e252-41be-11e9-81d5-00a0986138f7"
},
"unix_user": "root",
"windows_user": "cifs1/administrator"
},
"index": "1",
"node": {
"_links": {
"self": {
"href": "/api/resourcelink"
}
},
"name": "node1",
"uuid": "1cd8a442-86d1-11e0-ae1c-123478563412"
},
"reason": {
"message": "Access is allowed because the operation is trusted and no security is configured."
},
"session_id": "2628976282477527056",
"share": {
"_links": {
"self": {
"href": "/api/resourcelink"
}
},
"name": "sh1"
},
"svm": {
"_links": {
"self": {
"href": "/api/resourcelink"
}
},
"name": "svm1",
"uuid": "02c9e252-41be-11e9-81d5-00a0986138f7"
},
"volume": {
"_links": {
"self": {
"href": "/api/resourcelink"
}
},
"name": "volume1",
"uuid": "028baa66-41bd-11e9-81d5-00a0986138f7"
}
}Error
Status: Default, Error| Name | Type | Description |
|---|---|---|
error |
Example error
{
"error": {
"arguments": [
{
"code": "string",
"message": "string"
}
],
"code": "4",
"message": "entry doesn't exist",
"target": "uuid"
}
}Definitions
See Definitions
href
| Name | Type | Description |
|---|---|---|
href |
string |
_links
| Name | Type | Description |
|---|---|---|
self |
svm_reference
SVM, applies only to SVM-scoped objects.
| Name | Type | Description |
|---|---|---|
_links |
||
name |
string |
The name of the SVM. |
uuid |
string |
The unique identifier of the SVM. |
file_access_filter
ONTAP allows creation of filters for file access tracing for both CIFS and NFS. These filters have protocols, path, username and client IP based on which file access operations are logged.
| Name | Type | Description |
|---|---|---|
client_ip |
string |
Specifies the IP address from which the client accesses the file or directory. |
enabled |
boolean |
Specifies whether to enable or disable the filter. Filters are enabled by default and are deleted after 60 mins. |
index |
integer |
Position of the file access tracing filter. |
path |
string |
Specifies the path for which permission tracing can be applied. The value can be complete path from root of CIFS share or root of volume for NFS. |
protocol |
string |
Specifies the protocol for which permission trace is required. |
svm |
SVM, applies only to SVM-scoped objects. |
|
trace_allowed_ops |
boolean |
Specifies if the filter can trace file access denied and allowed events. The value of trace-allow is false by default, and it traces access denied events. The value is set to true for tracing access allowed events. |
unix_user |
string |
Specifies the UNIX username whose access requests you want to trace. The filter would match only if the request is received with this user. |
windows_user |
string |
Specifies the Windows username whose access requests you want to trace. The filter would match only if the request is received with this user. |
node
| Name | Type | Description |
|---|---|---|
_links |
||
name |
string |
|
uuid |
string |
reason
Displays the allowed or denied reason for the file access tracing events that are generated.
| Name | Type | Description |
|---|---|---|
message |
string |
The error message. |
| Name | Type | Description |
|---|---|---|
_links |
||
name |
string |
Share name |
volume
| Name | Type | Description |
|---|---|---|
_links |
||
name |
string |
The name of the volume. |
uuid |
string |
Unique identifier for the volume. This corresponds to the instance-uuid that is exposed in the CLI and ONTAPI. It does not change due to a volume move.
|
error_arguments
| Name | Type | Description |
|---|---|---|
code |
string |
Argument code |
message |
string |
Message argument |
error
| Name | Type | Description |
|---|---|---|
arguments |
array[error_arguments] |
Message arguments |
code |
string |
Error code |
message |
string |
Error message |
target |
string |
The target parameter that caused the error. |