Data Loss Prevention

 View Only

  • 1.  Issue with DLP API incidentDetail request

    Posted Jan 15, 2013 11:01 AM
    I am using the following C# code to implement the Data Loss Prevention API and finding that on an incidentDetail request i get the below exception: code: string client_username = "[username]"; string client_password = "[password]"; string url = "https://[server_name]/ProtectManager/services/v2011/incidents?wsdl"; ReportingApi.ReportingServiceClient client = new ReportingApi.ReportingServiceClient(url, client_username, client_password); try { client.connect(); IncidentListRequest request = new IncidentListRequest(); request.savedReportId = 84; //request.incidentCreationDateLaterThan = DateTime.Now.AddYears(-1); List<int> ids = new List<int>(); ids.AddRange(client.getPortClient().incidentList(request)); if (ids != null) { IncidentDetailRequest incidentDetails = new IncidentDetailRequest(); incidentDetails.incidentId = ids.ToArray(); incidentDetails.includeHistory = true; incidentDetails.includeViolations = true; incidentDetailResponse response = new incidentDetailResponse(client.getPortClient().incidentDetail(incidentDetails)); } } catch (Exception ex) { Console.WriteLine(ex.ToString()); } finally { client.disconnect(); } exception: "System.ServiceModel.FaultException`1[Symantec_DLP.IncidentService.BasicFault]: com.vontu.v2011.enforce.webservice.incident.ServiceErrorFault (Fault Detail is equal to Symantec_DLP.IncidentService.BasicFault)." Pulled from Soap log: -- 15/Jan/2013:07:20:33:868 -0800 [10.12.220.59] [inbound] ["incidentList"] <s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/"> <s:Body xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema"> <incidentListRequest xmlns="http://www.vontu.com/v2011/enforce/webservice/incident/schema"> <savedReportId>84</savedReportId> <incidentCreationDateLaterThan>0001-01-01T00:00:00</incidentCreationDateLaterThan> </incidentListRequest> </s:Body> </s:Envelope> -- 15/Jan/2013:07:20:34:225 -0800 [10.12.220.59] [outbound] ["incidentList"] <S:Envelope xmlns:S="http://schemas.xmlsoap.org/soap/envelope/"> <S:Body><ns2:incidentListResponse xmlns:ns2="http://www.vontu.com/v2011/enforce/webservice/incident/schema" xmlns:ns3="http://www.vontu.com/v2011/enforce/webservice/incident/common/schema" xmlns:ns4="http://www.vontu.com/enforce/export/incident/common/schema" xmlns:ns5="http://www.vontu.com/enforce/export/incident/schema" xmlns:ns6="http://www.vontu.com/v2011/enforce/webservice/incident"><ns2:incidentId>3</ns2:incidentId><ns2:incidentId>4</ns2:incidentId><ns2:incidentId>5</ns2:incidentId></ns2:incidentListResponse></S:Body> </S:Envelope> -- 15/Jan/2013:07:20:34:301 -0800 [10.12.220.59] [inbound] ["incidentDetail"] <s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/"> <s:Body xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema"> <incidentDetailRequest xmlns="http://www.vontu.com/v2011/enforce/webservice/incident/schema"> <incidentId>3</incidentId> <incidentId>4</incidentId> <incidentId>5</incidentId> </incidentDetailRequest> </s:Body> </s:Envelope> -- 15/Jan/2013:07:20:34:418 -0800 [10.12.220.59] [outbound] ["incidentDetail"] <S:Envelope xmlns:S="http://schemas.xmlsoap.org/soap/envelope/"> <S:Body><S:Fault xmlns:ns4="http://www.w3.org/2003/05/soap-envelope"><faultcode>S:Server</faultcode><faultstring>com.vontu.v2011.enforce.webservice.incident.ServiceErrorFault</faultstring><detail><ns3:BasicFault xmlns:ns3="http://www.vontu.com/v2011/enforce/webservice/incident/schema" xmlns:ns2="http://www.vontu.com/v2011/enforce/webservice/incident/common/schema" xmlns:ns4="http://www.vontu.com/enforce/export/incident/common/schema" xmlns:ns5="http://www.vontu.com/enforce/export/incident/schema" xmlns:ns6="http://www.vontu.com/v2011/enforce/webservice/incident"><ns3:errorMessage>Unable to service Incident Detail request</ns3:errorMessage></ns3:BasicFault></detail></S:Fault></S:Body> </S:Envelope> Simple question what am I doing wrong?


  • 2.  RE: Issue with DLP API incidentDetail request

    Posted Jan 15, 2013 11:05 AM

    below is the xml that was auto-formatted

    -- 15/Jan/2013:07:20:33:868 -0800 [10.12.220.59] [inbound] ["incidentList"] <s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/"> <s:Body xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema"> <incidentListRequest xmlns="http://www.vontu.com/v2011/enforce/webservice/incident/schema"> <savedReportId>84</savedReportId> <incidentCreationDateLaterThan>0001-01-01T00:00:00</incidentCreationDateLaterThan> </incidentListRequest> </s:Body> </s:Envelope> -- 15/Jan/2013:07:20:34:225 -0800 [10.12.220.59] [outbound] ["incidentList"] <S:Envelope xmlns:S="http://schemas.xmlsoap.org/soap/envelope/"> <S:Body><ns2:incidentListResponse xmlns:ns2="http://www.vontu.com/v2011/enforce/webservice/incident/schema" xmlns:ns3="http://www.vontu.com/v2011/enforce/webservice/incident/common/schema" xmlns:ns4="http://www.vontu.com/enforce/export/incident/common/schema" xmlns:ns5="http://www.vontu.com/enforce/export/incident/schema" xmlns:ns6="http://www.vontu.com/v2011/enforce/webservice/incident"><ns2:incidentId>3</ns2:incidentId><ns2:incidentId>4</ns2:incidentId><ns2:incidentId>5</ns2:incidentId></ns2:incidentListResponse></S:Body> </S:Envelope> -- 15/Jan/2013:07:20:34:301 -0800 [10.12.220.59] [inbound] ["incidentDetail"] <s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/"> <s:Body xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema"> <incidentDetailRequest xmlns="http://www.vontu.com/v2011/enforce/webservice/incident/schema"> <incidentId>3</incidentId> <incidentId>4</incidentId> <incidentId>5</incidentId> </incidentDetailRequest> </s:Body> </s:Envelope> -- 15/Jan/2013:07:20:34:418 -0800 [10.12.220.59] [outbound] ["incidentDetail"] <S:Envelope xmlns:S="http://schemas.xmlsoap.org/soap/envelope/"> <S:Body><S:Fault xmlns:ns4="http://www.w3.org/2003/05/soap-envelope"><faultcode>S:Server</faultcode><faultstring>com.vontu.v2011.enforce.webservice.incident.ServiceErrorFault</faultstring><detail><ns3:BasicFault xmlns:ns3="http://www.vontu.com/v2011/enforce/webservice/incident/schema" xmlns:ns2="http://www.vontu.com/v2011/enforce/webservice/incident/common/schema" xmlns:ns4="http://www.vontu.com/enforce/export/incident/common/schema" xmlns:ns5="http://www.vontu.com/enforce/export/incident/schema" xmlns:ns6="http://www.vontu.com/v2011/enforce/webservice/incident"><ns3:errorMessage>Unable to service Incident Detail request</ns3:errorMessage></ns3:BasicFault></detail></S:Fault></S:Body> </S:Envelope>


  • 3.  RE: Issue with DLP API incidentDetail request
    Best Answer

    Posted Jan 15, 2013 11:41 AM

    To resolve this issue I had to go into the generated code for the service:

    then editted IncidentDetailRequest and made:

    includeViolations

    includeHistory

     

    both not be default values anymore...

     

    Issue resolved, Symantec should update their API to correctly generate.



  • 4.  RE: Issue with DLP API incidentDetail request

    Posted Jan 16, 2013 05:26 PM

    Thank you Justin for reporting the issue. It is a known issue (ID  2967946) and we are planning to fix it in the upcoming 11.6.2 release.