AvantGuard - ConnectSecure

Actions223

Reports Actions
- Get List Standard Report
- Post Create Report
- Get Report Settings
- Post Report Settings
- Get Retrieve Report Jobs View
- Get Retrieve Report Job View
- Get Download Report
Compliance Actions
- Get Retrieve Compliance Types
- Get Retrieve Records
Jobs Actions
- Get Retrieve Job Details View
- Get Retrieve Job Details
Active Directory Actions
- Get Retrieve Ad Roles
- Get Retrieve Ad User Licenses
- Get Retrieve Azure Licenses
- Get Retrieve Azure Ad Logs
- Get Retrieve Azure Secure Score
- Get Retrieve Ad Password Policies
- Get Retrieve Ad Groups View
- Get Retrieve Ad Ous View
- Get Retrieve Ad Gpos View
- Get Retrieve Ad Computers View
- Get Retrieve Ad Users View
- Get Retrieve Ad Domain Details
- Get Retrieve Ad Gpos Details
- Get Retrieve Get Ous Details
- Get Retrieve Get Groups Details
- Get Retrieve Ad Group Users
- Get Retrieve Ad Group Computers
- Get Retrieve Get User Details
- Get Retrieve Get Computer Details
- Get Retrieve Ad Roles Details
- Get Retrieve Ad Roles Member
- Get Retrieve Ad Basic Info
Audit Log Actions
- Get Retrieve Audit Log
Ad Audit Actions
- Get Retrieve Event Stats
- Get Retrieve User Event Stats
- Get Retrieve User Locked Stats
- Get Retrieve User Enabled Stats
Scheduler Actions
- Get Retrieve Scheduler
- Post Create Scheduler
- Patch Update Scheduler
- Delete Delete Scheduler
- Post Update Schedule
Application Baseline Actions
- Get Retrieve Application Baseline Rules
- Get Retrieve Application Baseline Rule
- Post Create Application Baseline Rule
- Patch Update Application Baseline Rule
- Delete Delete Application Baseline Rule
- Get Retrieve App Baseline Plan Assets
- Get Retrieve App Baseline Plan Asset
- Get Retrieve App Baseline Plan Company
- Get Retrieve App Baseline Plan Global
Attack Surface Actions
- Get Retrieve Attack Surface Domain
- Post Create Attack Surface Domain
- Patch Update Attack Surface Domain
- Delete Delete Attack Surface Domain
- Get Retrieve Attack Surface Results
- Get Retrieve Attack Surface Result
Backup Software Actions
- Get Retrieve Backup Software
- Post Create Backup Software
- Patch Update Backup Software
- Delete Delete Backup Software
EDR Actions
- Get Retrieve Edr
- Post Create Edr
- Patch Update Edr
- Delete Delete Edr
Tags Actions
- Get Retrieve Tag Rules
- Get Retrieve Tag Rule
- Post Create Tag Rule
- Patch Update Tag Rule
- Delete Delete Tag Rule
- Get Retrieve Tags
- Get Retrieve Tag
- Post Create Tag
- Patch Update Tag
- Delete Delete Tag
PII Actions
- Get Retrieve Pii Scan Settings
- Get Retrieve Pii Scan Setting
- Post Create Pii Scan Setting
- Patch Update Pii Scan Setting
- Delete Delete Pii Scan Setting
External Scan Actions
- Get Retrieve Custom Profile
- Post Create Custom Profile
- Patch Update Custom Profile
- Delete Delete Custom Profile
- Post Scan External Endpoint
Settings Actions
- Get Retrieve Custom Domains
- Get Retrieve Custom Domain
- Post Custom Domain
Compliance Assessment Actions
- Get Retrieve Compliance Assessment
- Post Create Compliance Assessment
- Patch Update Compliance Assessment
- Delete Delete Compliance Assessment
Auth Actions
- Post Authorize
Company Actions
- Get Retrieve Asset Windows Compatibility
- Get Retrieve Companies
- Get Retrieve Company
- Post Create Company
- Patch Update Company
- Delete Delete Company
- Get Retrieve Company Stats
- Get Retrieve Company Stat
- Get Retrieve Jobs View
- Get Retrieve Job View
- Get Retrieve Adaudit
- Get Retrieve Event Tickets
Agent Actions
- Get Retrieve Agents
- Get Retrieve Agent
- Post Migrate Agents
Credentials Actions
- Get Retrieve Credentials
- Get Retrieve Credential
- Post Create Credential
- Patch Update Credential
- Delete Delete Credential
- Get Retrieve Agent Credentials Mapping
- Get Retrieve Agent Credential Mapping
- Post Create Agent Credential Mapping
- Patch Update Agent Credential Mapping
- Delete Delete Agent Credential Mapping
Asset Actions
- Get Retrieve Records
- Get Retrieve Assets
- Get Retrieve Asset
- Post Create Asset
- Patch Update Asset
- Delete Delete Asset
- Get Retrieve Asset Stats
- Get Retrieve Asset Stat
- Get Retrieve Asset View
- Get Retrieve Cron Jobs
- Get Retrieve Kernel Modules
- Get Retrieve Suid Permissions
- Get Retrieve Ufw Firewall Rules
- Get Retrieve Selinux Settings
- Get Retrieve Asset Iptables Rules
- Get Retrieve Asset Users
- Get Retrieve Asset Processes Running
- Get Retrieve Asset Services
- Get Retrieve Asset Patches Info
- Get Retrieve Asset Firewall Rules
- Get Retrieve Asset Registry Misconfiguration
- Get Retrieve Asset Open Ports
- Get Retrieve Notification Tickets View
- Get Retrieve System Events View
Discovery Settings Actions
- Get Retrieve Discovery Settings
- Get Retrieve Discovery Setting
- Post Create Discovery Setting
- Patch Update Discovery Setting
- Delete Delete Discovery Setting
- Get Retrieve Agent Discoverysettings Mapping
- Get Retrieve Agent Discoverysetting Mapping
- Post Create Agent Discoverysetting Mapping
- Patch Update Agent Discoverysetting Mapping
- Delete Delete Agent Discoverysetting Mapping
Asset Data Actions
- Get Retrieve Asset Compliance Report Card
- Get Retrieve Asset Firewall Policy
- Get Retrieve Asset Installed Drivers
- Get Retrieve Asset Installed Driver
- Get Retrieve Asset Interface
- Get Retrieve Asset Msdt
- Get Retrieve Asset Ports
- Get Retrieve Asset Port
- Get Retrieve Asset Security Report Data
- Get Retrieve Asset Security Report Datum
- Get Retrieve Asset Shares
- Get Retrieve Asset Share
- Get Retrieve Asset Storages
- Get Retrieve Asset Storage
- Get Retrieve Asset Unqouted Services
- Get Retrieve Asset Unqouted Service
- Get Retrieve Asset User Shares
- Get Retrieve Asset User Share
- Get Retrieve Asset Video Info
- Get Retrieve Asset Windows Reboot Required
- Get Retrieve Asset Window Reboot Required
- Get Retrieve Bios Info
- Get Retrieve Bio Info
- Get Retrieve Browser Extensions
- Get Retrieve Browser Extension
- Get Retrieve Ciphers View
- Get Retrieve Cipher View
- Get Retrieve Windows Protection Status
- Get Retrieve Window Protection Status
Vulnerabilities Actions
- Get Retrieve Remediated
- Get Retrieve Suppress Vulnerability
- Get Retrieve Suppres Vulnerability
- Post Create Suppres Vulnerability
- Patch Update Suppres Vulnerability
- Delete Delete Suppres Vulnerability
- Get Retrieve Records
Firewall Actions
- Get Retrieve Firewall Groups
- Get Retrieve Firewall Group
- Get Retrieve Firewall Interfaces
- Get Retrieve Firewall Interface
- Get Retrieve Firewall License
- Get Retrieve Firewall Rules
- Get Retrieve Firewall Rule
- Get Retrieve Firewall Users
- Get Retrieve Firewall User
- Get Retrieve Firewall Zones
- Get Retrieve Firewall Zone
Integration Actions
- Get Retrieve Integration Credentials
- Get Retrieve Integration Credential
- Post Create Integration Credential
- Patch Update Integration Credential
- Delete Delete Integration Credential
- Get Retrieve Integration Rules
- Get Retrieve Integration Rule
- Post Create Integration Rule
- Patch Update Integration Rule
- Delete Delete Integration Rule
- Get Retrieve Company Mappings
- Get Retrieve Company Mapping
- Post Create Company Mapping
- Patch Update Company Mapping
- Delete Delete Company Mapping
Event Set Actions
- Get Retrieve Event Set
- Post Create Event Set
- Patch Update Event Set
- Delete Delete Event Set
Ticket Template Actions
- Get Retrieve Custom Ticketing Template
- Post Create Custom Ticketing Template
- Patch Update Custom Ticketing Template
- Delete Delete Custom Ticketing Template

Overview

This node operation retrieves Azure Active Directory (Azure AD) logs for a specified user. It is useful for monitoring and auditing user activities within an organization's Azure AD environment. Typical use cases include security audits, compliance reporting, and troubleshooting user access issues by fetching detailed log entries related to a particular user.

For example, an IT administrator can use this node to pull sign-in logs or audit logs filtered by a specific user ID to investigate suspicious activity or verify access patterns.

Properties

Name	Meaning
X USER ID	The unique identifier of the user whose Azure AD logs you want to retrieve.
Additional Query Parameters	Optional parameters to refine the query: - Condition: Filter condition for logs. - Skip: Number of records to skip (for pagination). - Limit: Maximum number of records to return. - Order By: Field(s) to order the results by.

Output

The node outputs JSON data containing the retrieved Azure AD logs corresponding to the specified user and query parameters. Each item in the output typically represents a single log entry with details such as event type, timestamp, user information, and other relevant metadata.

No binary data output is indicated for this operation.

Dependencies

Requires an API key credential for authenticating requests to the Azure AD logs service.
The node expects proper configuration of the base URL and authentication credentials in n8n to connect to the Azure AD logs API endpoint.

Troubleshooting

Missing or invalid User ID: If the "X USER ID" property is empty or incorrect, the API call will fail or return no data. Ensure the user ID is valid and correctly entered.
API authentication errors: Errors related to authentication usually indicate missing or invalid API credentials. Verify that the API key or token is correctly configured in n8n.
Query parameter issues: Incorrectly formatted or unsupported query conditions may cause the API to reject the request. Validate the syntax and supported fields for the "Condition" parameter.
Pagination problems: Using "Skip" and "Limit" incorrectly might result in unexpected subsets of data. Adjust these values carefully to navigate through large datasets.

AvantGuard - ConnectSecure

Actions223

Overview

Properties

Output

Dependencies

Troubleshooting

Links and References

Discussion

AvantGuard - ConnectSecureInstall

Actions223

Overview

Properties

Output

Dependencies

Troubleshooting

Links and References

Discussion

AvantGuard - ConnectSecure