Products
Platform
General
Public groups
Hello, We have Cisco Meraki MX75 device configured in Meraki Dashboard but not seeing events or logs when we do a API request curl --location 'https://n219.meraki.com//api/v1/organizations/{orgId}/appliance/security/events?t1=2024-03-11T24%3A0...' \ --header 'Accept: application/json' \ --header 'Authorization: Bearer '
That API call returns results from security center. These are IDS/IPS events. If you want to generate some, you can use something like nessus scanner.
https://documentation.meraki.com/MX/Monitoring_and_Reporting/Security_Center
I couldn't find security center in Meraki Dashboard, Could you help us.
It's under Organization -> security center.
You may need to be an org admin to access it.
I have organization admin access but couldn't find it attached screenshot
Does your MX have advanced security license?
That's a requirement for the feature.
we are using Meraki Test gear free trail 30days.
If you want "events" rather than "security events" then take a look at this API:
https://developer.cisco.com/meraki/api-v1/get-network-events/
we require organization level events and trying to generate but API shows empty array response.https://developer.cisco.com/meraki/api-v1/get-network-events/ we don't want to iterate over all networks present in organization and get events.we are trying to use below API to get all appliance security events in an organization for all networks.https://developer.cisco.com/Fmeraki/api-v1/get-organization-appliance-security-events
Most events are logged per network, which as you mentioned will advise iterating through them.
Only IPS and IDS events (via security center) and the change log are logged at an organization level.
do we also get IDS and IPS events in https://developer.cisco.com/meraki/api-v1/get-network-events/ API under network level?
