Palo Alto Networks · Schema

AggregationQuery

AggregationQuery schema from Palo Alto Networks SASE Aggregate Monitoring API

Cloud SecurityCybersecurityFirewallNetwork SecuritySASESOARThreat IntelligenceXDR

Properties

Name Type Description
tsg_id string Tenant Service Group ID to scope the query. Data from all descendant TSGs within this scope is included.
filter object Key-value filter conditions to apply to the query. Filter keys are data-type specific (e.g., severity, category, app_name).
time_range object Time range for the query.
count integer Maximum number of result rows to return.
histogram object Configuration for time-series histogram output. When specified, results are bucketed by time.
group_by array Dimension fields to group results by. Supported values are data-type specific.
sort array Sort order for results.
View JSON Schema on GitHub