Skip to main content

Cloud Security Posture Management

These instructions assume Prisma Cloud is already activated, and that your administrator has already added you to the tenant.

Prisma Cloud requires an API access key to enable programmatic access to the REST API. By default, only the System Admin has API access and can enable API access for other administrators. If you are not the System Admin, request API access from that person.

  1. Settings > Access Keys+ > Add New to create an access key. This creates an Access Key ID and Secret Key. Be sure to record it.

    For details, see Create and Manage Access Keys.

  2. Use the proper base URI for all your API calls.

  3. Obtain a JWT that you will use to authenticate subsequent API calls. Using api.prismacloud.io as the base URI:

curl -X POST https://api.prismacloud.io/login \
-H 'Content-Type: application/json' \
-d '{"username":"<Access Key ID>","password":"<Secret Key>"}'
Example response:
{
"token": "<JWT>",
"message": "login_successful",
"customerNames": [
{
"customerName": "Test",
"tosAccepted": true
}
]
}
  1. Use the x-redlock-auth HTTP Header to present the JWT on the API request.

  2. For Content-Type you usually use application/json but check the documentation for each endpoint to be sure.

  3. To refresh your JWT:

curl -H 'Content-Type: application/json' \
-H 'x-redlock-auth:<current JWT>' \
https://api.prismacloud.io/auth_token/extend

Example API call with the JWT:

curl -H 'Content-Type: application/json' \
-H 'x-redlock-auth: <JWT Token>' \
https://api.prismacloud.io/filter/policy/suggest
Last updated on by Charlie Sestito