We are facing issues with the Azure API endpoint for fetching security alerts based on given time filter.
Azure API Documentation Link and screenshot for the API section, https://docs.microsoft.com/en-us/rest/api/securitycenter/alerts/listbyresourcegroup
We encountered the following error while hitting the endpoint with the required params and Bearer access token.
Error Details:
{
"error": {
"code": "ProviderError",
"message": "Resource provider 'Microsoft.Security' failed to return collection response for type 'alerts'."
}
}
Endpoint URL:
https://management.azure.com/subscriptions/{subscription-id}/resourceGroups/{ResourceGroup}/providers/Microsoft.Security/alerts?api-version={version}}&$filter=properties.reportedTimeUtc eq '2019-07-06T08:00:51.8801218Z'
NOTE: The URL gives response without specifying the time “filter” , but when using filter as one of the params, we get the above mentioned error.
The param value used: $filter = properties.reportedTimeUtc eq '2019-07-06T08:00:51.8801218Z'
Could anyone help in the resolution of this issue? Let me know for any additional details/clarifications. Thank You.