Table: prismacloud_iam_role - Query Prisma Cloud roles using SQL
The Prisma Cloud role table in Steampipe provides you with information about roles within Prisma Cloud. This table allows you, as a security engineer or cloud administrator, to query role-specific details, including name, description, associated users, and more. You can utilize this table to gather insights on roles, such as their associated account groups, users, and more. The schema outlines the various attributes of the Prisma Cloud role for you, including the role's ID, name, and description.
Table Usage Guide
The prismacloud_iam_role table in Steampipe provides information about roles within Prisma Cloud. This table allows you to query details such as the role's name, description, associated users, and more, enabling you to manage and monitor your roles effectively.
Examples
Basic Info
Retrieve basic information about Prisma Cloud roles, such as name, description, and role type. This query helps you to understand the overall configuration and details of your roles.
select name, description, role_typefrom prismacloud_iam_role;select name, description, role_typefrom prismacloud_iam_role;List of roles with their associated users
Get a list of all roles along with their associated users. This is useful for identifying which users are assigned to which roles.
select name, id, associated_usersfrom prismacloud_iam_role;select name, id, associated_usersfrom prismacloud_iam_role;Roles and their account groups
Identify roles along with their associated account groups. This helps in understanding role assignments and group memberships.
select name, account_group_idsfrom prismacloud_iam_role;select name, account_group_idsfrom prismacloud_iam_role;Recently modified roles
Retrieve roles that were modified recently. This helps in tracking changes and understanding recent modifications.
select name, last_modified_by, last_modified_tsfrom prismacloud_iam_rolewhere last_modified_ts > extract( epoch from now() ) - 604800;select name, last_modified_by, last_modified_tsfrom prismacloud_iam_rolewhere last_modified_ts > strftime('%s', 'now') - 604800;Roles with restricted dismissal access
Get a list of roles that restrict dismissal access. This helps in understanding security policies and role permissions.
select name, restrict_dismissal_accessfrom prismacloud_iam_rolewhere restrict_dismissal_access = true;select name, restrict_dismissal_accessfrom prismacloud_iam_rolewhere restrict_dismissal_access = 1;Schema for prismacloud_iam_role
| Name | Type | Operators | Description |
|---|---|---|---|
| _ctx | jsonb | Steampipe context in JSON form. | |
| account_group_ids | jsonb | A list of account group IDs associated with the role. | |
| account_groups | jsonb | A list of account groups associated with the role. | |
| additional_attributes | jsonb | Additional attributes associated with the role. | |
| associated_users | jsonb | A list of user IDs associated with the role. | |
| code_repository_ids | jsonb | A list of code repository IDs associated with the role. | |
| description | text | The description of the role. | |
| text | =, !=, ~~, ~~*, !~~, !~~* | Email address of the current session user. | |
| id | text | The unique identifier for the role. | |
| last_modified_by | text | The user who last modified the role. | |
| last_modified_ts | timestamp with time zone | The timestamp when the role was last modified. | |
| name | text | The name of the role. | |
| resource_list_ids | jsonb | A list of resource list IDs associated with the role. | |
| restrict_dismissal_access | boolean | Whether the role restricts dismissal access. | |
| role_type | text | The type of the role. | |
| sp_connection_name | text | =, !=, ~~, ~~*, !~~, !~~* | Steampipe connection name. |
| sp_ctx | jsonb | Steampipe context in JSON form. | |
| title | text | Title of the role. |
Export
This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.
You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:
/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- prismacloudYou can pass the configuration to the command with the --config argument:
steampipe_export_prismacloud --config '<your_config>' prismacloud_iam_role