You can use the REST API that is provided to create a report that includes data on processing web requests.
1. Log on to the REST API.
To log on, you must provide a URL that differs depending on the product you are using to process web requests and on the country or region where
you log on.
Under Security Service Edge, use a URL that includes msg.mcafee-cloud as the domain name with a country or region code prefixed.ae — United Arab Emirates
Use these country and region codes:
de — Europe
gb — United Kingdom
sg — Singapore
us — North America
Under Secure Web Gateway Cloud Service (Secure WGCS), use a URL that includes msg.mcafeesaas.com as the domain name.
For North America:
Provide the customer ID here that you received when you purchased the product, but leave out the initial c before the string of numbers,
for example, 1234567.
2. Enter a command to download data for your report. Use an HTTP client tool for this, such as curl or wget. Include the required parameters and
optional parameters as needed. Important required parameters are:
Version header — Determines the data fields that are downloaded, for example, user_id, source_ip, or http_action
For a list of all available version headers with their data fields, see Reporting Fields.
Timestamp filters — Specify the time range during which data is downloaded
A complete download command looks like this:
curl --insecure --verbose --header 'Accept: text/csv' --header 'x-mwg-api-version: 3' --compressed --user <user name>:<password> https://msg.mcafeesaas.com/mwg/api/reporting/forensic/12345678 ?filter.requestTimestampFrom=1527279524&filter.requestTimestampTo=1527283124&order.0.requestTimestamp=asc
For more information about this command and the output it returns, see Reporting Examples.
When the report has been run, you can review the downloaded data and analyze them.