-
|
Hello FalconPy Community, I am encountering an issue with the Falcon Intel API when using FalconPy and was hoping for some guidance or suggestions on how to resolve it. I have a falcon client that works for getting the actors, but when I attempt to use the query_vulnerability method, it returns an error 403. Which permission do I need to execute this operation? |
Beta Was this translation helpful? Give feedback.
Replies: 2 comments 3 replies
-
|
Hi @aosti - Thank you for the question! Does your key have the Vulnerabilities (Falcon Intelligence) scope assigned? |
Beta Was this translation helpful? Give feedback.
-
|
Hello, I’m collaborating with Aosti in this case, and we are using the Vulnerabilities (Falcon Intelligence) scope. However, we do not experience this error when using other API methods, such as Our code reference: |
Beta Was this translation helpful? Give feedback.
-
|
I get a 200 with results from the QueryVulnerabilities operation using a key with only the one scope assigned in my test environment. Can we confirm we have this scope assigned: and not this one? Are you using the Service Class example or the Uber Class example? |
Beta Was this translation helpful? Give feedback.
-
|
I can't see the "Vulnerabilities (Falcon Intelligence)" scope in my /api-clients-and-keys. I can see "vulnerabilities" and other Falcon Intelligence scopes. Here’s my list of my scopes in use: Read Only:
I'm trying to use query_vulnerabilities because I'd like to list all vulnerabilities with specific adversaries. I'm using Service Classe: |
Beta Was this translation helpful? Give feedback.
-
|
The scope should have |
Beta Was this translation helpful? Give feedback.
The scope should have
(Falcon Intelligence)in the name like the others. IfVulnerabilities (Falcon Intelligence)is not one of the available scope options, you may need to reach out to the Support Team to check which products are available in your tenant.