# Export Activity to Custom Webhook

## Overview

Akto allows you to forward guardrail activity events to an external system through a webhook endpoint. Webhook export helps enterprise security teams integrate guardrail violations and policy activity with SIEM platforms, monitoring pipelines, or internal security automation workflows.

Akto sends guardrail activity data in batches every **15 minutes** to the configured webhook endpoint.

### Steps to Configure Webhook Export

{% stepper %}
{% step %}
Navigate to **Guardrail Activity** in the Akto dashboard.
{% endstep %}

{% step %}
Select **More Actions** in the top-right corner.
{% endstep %}

{% step %}
Select **Export via webhook integration**.

<div data-with-frame="true"><figure><img src="https://3128331180-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2Ftog5ODwYfqPOf4eQhsOC%2Fuploads%2FQpKaoagKkE315JxImkSH%2Fimage.png?alt=media&#x26;token=9d9959ba-12f2-4c31-a4da-c248d7a02a78" alt="" width="563"><figcaption></figcaption></figure></div>
{% endstep %}

{% step %}
Enter the **Webhook endpoint URL** where the external system receives guardrail activity events.\
Example:\
`https://your-webhook-endpoint.com/events`
{% endstep %}

{% step %}
Enable **Use gzip encoding** when the receiving system expects compressed payloads with the header `Content-Encoding: gzip`.

{% hint style="info" %}
Leave the option disabled when the receiving system expects standard JSON payloads.
{% endhint %}
{% endstep %}

{% step %}
Add **Custom Headers** when the receiving service requires authentication or routing metadata.\
Common examples include `Authorization` headers or `X-API-Key` headers.
{% endstep %}

{% step %}
Select **Save** to activate the webhook integration.

<div data-with-frame="true"><figure><img src="https://3128331180-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2Ftog5ODwYfqPOf4eQhsOC%2Fuploads%2FaeRSNrIvHg8vy0IYnoFr%2Fimage.png?alt=media&#x26;token=8f452619-e501-43ec-8430-f0b878043fad" alt="" width="563"><figcaption></figcaption></figure></div>
{% endstep %}
{% endstepper %}

Akto begins sending batched guardrail activity events to the configured webhook endpoint every **15 minutes** after configuration is saved.

### Result of Webhook Integration

Configured webhook integration allows security teams to stream Guardrail activity into external systems such as:

* SIEM platforms
* Security automation pipelines
* Incident response tooling

Webhook export ensures external monitoring platforms receive guardrail activity data without manual exports.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://ai-security-docs.akto.io/agentic-guardrails/how-to/export-activity-to-custom-webhook.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.