Table of contents

API changelog

June 3, 2020

The legacy /rest/cloudaccounts/aws API endpoint no longer supports user-defined external IDs. For details, see Action required if you are using cross account roles with the API /rest/cloudaccounts/aws.

June 1, 2020

Tenant API keys are now permitted to delete themselves. This allows the primary tenant to generate tenant API keys for temporary use and then remove them programmatically.

May 19, 2020

Sending an empty request body when creating a tenant using the API now returns an appropriate error message instead of an internal error.

April 9, 2020

The AWS Connector API now returns more informative error messages.

February 27, 2020


Use the API to add an Amazon Web Services (AWS) connector and synchronize EC2 Instances and WorkSpaces from AWS to Workload Security:

Calls to the legacy /rest/cloudaccounts/aws endpoint now include a Deprecated:true header. This does not immediately impact any functionality. As of June 1, 2020, calls to `/rest/awsconnectors/aws` that attempt to add an AWS cloud account using a cross account role with a customer-provided external ID will fail as an invalid request. To resolve this issue, update your automation scripts to use the new /api/awsconnectors endpoint.

For more information, see

January 07, 2020


  • Enhanced GCP Connector API documentation for the request parameter and searchable fields
  • In the expand parameter of /api/computers, the allSecurityModules option now includes Application Control
  • Updated /api/sessions to improve error handling when the body of the request is empty

January 09, 2020

Updated the Scheduled Tasks API so that if a task is disabled, the returned nextRunTime value is null.