Individual Alerts
Returns a list of audit trails.
Sync Type: Incremental
Requirements
Before you connect Monad to Clumio, you need an Access Token, and need to determine the region of your account.
Create an API Service Token Determine the Region associated with your Clumio account
Details
Monad uses the updated_timestamp filter on the API to determine what data to display. This field is updated every time a request to get audit trails is successful with the last time a request to get audit trails was initiated. If this was the first time requesting for data, a full sync of the data is performed.
Configuration
The following configuration defines the input parameters. Each field's specifications, such as type, requirements, and descriptions, are detailed below.
Settings
| Setting | Type | Required | Description |
|---|---|---|---|
| Region | string | No | The region associated with your Clumio account. |
| Severity | string | No | Filter by alert severity (error, warning). |
| Primary Entity Type | string | No | Filter by primary entity type (e.g., aws_ebs_volume, vmware_vm). |
| Primary Entity Value | string | No | Filter by primary entity value (contains search). |
| Status | string | No | Filter by alert status (active, cleared). |
| Alert Type | string | No | Filter by alert type (e.g., policy_violated, tag_conflict). |
| Embed | string | No | Embed related resources (e.g., read-consolidated-alert). |
| Backfill Start Time | string | No | The date to start fetching data from. If not specified, no past records will be fetched. |
Secrets
| Secret | Type | Required | Description |
|---|---|---|---|
| Access Token | string | Yes | Token used to authenticate with the Clumio APIs. |
Sample Record
{
"_etag": "",
"_links": {
"_self": {
"href": "/alerts/individual/b9b7dcc2-ba08-89a6-2e35-5f934475b8f2",
"templated": false,
"type": "get"
},
"update-consolidated-alert": null
},
"active_entity_count": 10,
"cause": "network_connectivity_issue",
"cleared_entity_count": 26,
"cleared_timestamp": null,
"details": {
"cause": "Storage quota has exceeded 90% of allocated capacity.",
"type": "Infrastructure Health"
},
"id": "af4d562c-051d-f6bb-8dda-4a225aa7a464",
"notes": "Resolved via configuration update",
"parent_entity": {
"id": "org-901234",
"type": "workspace",
"value": "Critical Systems"
},
"raised_timestamp": "2025-08-11T23:46:27.702961Z",
"severity": "error",
"status": "cleared",
"type": "backup_failure",
"updated_timestamp": "2025-08-11T23:46:27.703011Z"
}