Block IP addresses by Username - ForcepointNGFW
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊
↑ Back to Content Index
This is forcepoint FUID playbook for blocking IP addresses by username ForcepointNGFW.
| Attribute |
Value |
| Type |
Playbook |
| Solution |
Standalone Content |
| Source |
View on GitHub |
Logic App Connectors
This playbook uses 4 Logic App connectors / built-in actions:
Action parameters (URLs, paths, function IDs)
| Action |
Method |
Endpoint |
Other |
| Add_comment_to_incident_(V3) |
post |
/Incidents/Comment |
— |
| Update_incident |
put |
/Incidents |
— |
| Entities_-_Get_Accounts |
post |
/entities/account |
— |
| Action |
Method |
Endpoint |
Other |
| Add_IP_Address_into_IP_List |
post |
/@{encodeURIComponent(variables('SMC Api Version Number'))}/elements/ip_list/@{encodeURIComponent(last(split(body('Get_IP_List_Element')?['result']?[0]?['href'],'/')))}/ip_address_list |
— |
| Get_IP_address |
get |
/@{encodeURIComponent(variables('SMC Api Version Number'))}/elements/ip_list/@{encodeURIComponent(last(split(body('Get_IP_List_Element')?['result']?[0]?['href'],'/')))}/ip_address_list |
— |
| Get_IP_List_Element |
get |
/@{encodeURIComponent(variables('SMC Api Version Number'))}/elements/ip_list |
— |
| Login |
post |
/@{encodeURIComponent(variables('SMC Api Version Number'))}/login |
— |
| Action |
Method |
Endpoint |
Other |
| Get_IP_Address_by_Domain_and_Username_-_Forcepoint_FUID |
get |
/api/uid/@{encodeURIComponent(variables('FUID Version'))}/user/ntlm-identity/@{encodeURIComponent(split(last(split(items('Appending_Usernames')?['AadUserId'],'@')),'.')[0],outputs('Seperator'),split(items('Appending_Usernames')?['AadUserId'],'@')[0])} |
— |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊
↑ Back to Playbooks