TEM Analytics API

About IBM Tivoli Endpoint Manager for Security and Compliance Analytics

Security and Compliance Analytics (SCA) is a web-based reporting and analysis application that aggregates the results of your security configuration checks and is used for auditing and evaluating success toward continuous compliance with those checks. It includes role-based access permissions, and provides users with flexible, historical report filters, measured values, exceptions management, and saved reports. Additional information is available on the Security and Compliance Analytics documentation page.

About the Analytics API

IBM® Tivoli® Endpoint Manager for Security and Compliance Analytics 1.1 and later supports an HTTP-based data API. This API provides remote-able access to all of the roll-ups and data elements included in the analytics warehouse.

The SCA server supports an HTTP-based data API. Using this API, you make authenticated HTTP GET requests to the Tivoli Endpoint Manager Analytics server, and receive responses containing JSON-encoded representation of the requested resource. Using URL query parameters, you can apply filters to the data, specify what order it should be returned in, and select a subset of columns or rows. This API provides remote-able access to all of the roll-ups and data elements included in the analytics warehouse.

Although SCA includes a rich reporting and graphical visualization UI, the historical security compliance data housed in a Tivoli Endpoint Management (TEM) SCA deployment may be valuable in other applications, such as a security monitoring tool, security data aggregator, governance risk and compliance application, or various enterprise dashboards. This API is used to programmatically and interactively pull data from the warehouse into these other applications.

Full documentation of the API is invoked interactively in the SCA application interface, but a brief overview is included in the PDF attached to this article.

Example Projects

API demo application hosted in the ISM library - serves as an interactive source for the API documentation and a demonstration of how to invoke the API. It will even write your API calls based on the items you select from the menus!