# Retrieve Action Plan for TOE ID
source: https://developer.mastercard.com/riskrecon-api/documentation/use-cases/risk-mgmt-issue-rmdfn/actionplan/actpln-toe/index.md

## Overview {#overview}

The `GET Action Plan TOE ID` endpoint retrieves both automated and manual action plan configurations for a given TOE (Target of Evaluation). The request requires the `toe_id` associated with the action plan. The response includes whether the action plan is automated or manual, the execution frequency for automated plans, the list of recipients, the last shared date, and issue counts linked to the action plan.

## Sequence Diagram {#sequence-diagram}

Diagram retrieve-act-pln-toe

## Execution Steps {#execution-steps}

The following steps describe how to get the current action plan configuration for a TOE ID:

1. The user sends a `GET` request specifying a TOE ID.
2. RiskRecon provides the TOE ID's action plan configurations and indicates whether the action plan is automated or manual, the execution frequency for automated plans, the list of external and internal recipients, the last shared date, and issue counts, including currently open issues, resolved issues, and issues shared within the action plan.

## Sample Request and Response {#sample-request-and-response}

For a sample response of this endpoint, visit [Get Action Plan TOE ID](https://developer.mastercard.com/riskrecon-api/documentation/testing/actionplan-samples/actpln-toe-smpl/index.md).

## Use Case Example {#use-case-example}

The use cases in this section discuss how you can use the `GET Action Plan TOE ID`.

### Monitor a Vendor's Progress in Issue Resolution {#monitor-a-vendors-progress-in-issue-resolution}

A RiskRecon customer has shared 30 issues with a vendor through an action plan. Of these issues, the vendor has resolved 10.

To monitor the vendor's (TOEs) progress in addressing these issues, the customer can use the `GET Action Plan TOE ID` endpoint. The response will include:

* Current open issue count: 20
* Total resolved issue count: 10
* Total shared issue count: 30

### Audit and Validate Action Plan Configuration for a Vendor {#audit-and-validate-action-plan-configuration-for-a-vendor}

A security analyst wants to review how a vendor (TOE) is monitored and managed through an action plan. By using the `GET Action Plan TOE ID` endpoint, the analyst can retrieve the full configuration details of the action plan associated with that TOE.

This allows the analyst to:

* Confirm whether the action plan is set up to run automatically or requires manual execution.
* Verify the frequency of automated action plans to ensure timely issue follow-up.
* Review the list of external and internal recipients to ensure that the appropriate stakeholders are receiving updates.
* Assess issue counts (open, resolved, and total shared) to gauge the vendor's current risk status and remediation progress.

This information is crucial for internal audits, compliance checks, and ensuring that vendor risk is managed according to organizational needs.

## Endpoint {#endpoint}


API Reference: `GET /v1/action_plan/{toe_id}`