Hi ,
in my Qradar integration I don't have this parameter ,
I have enabled the "Long Running Instance" and still it takes too long for the incidents to be fetched.
Is there a way to manually configure the Incident Fetch Interval.
I'm using IBM QRad
Hi, I am trying to create a custom widget that calculate follwing (Total Incident+ Total Command Execution) with date paramters adjusted by widget. I tried to implement this with JSON method and Automation Script but unable to get the solution. Can y
...
Kind of similar to the below link:
LIVEcommunity - Cortex XSOAR Context Issue - LIVEcommunity - 437729 (paloaltonetworks.com)
I've tried mapping content from the Abnormal Security integration and from the Syslog v2 integration. The Abnormal Securit
...
I am attempting to create a Slack channel from XSOAR using the slack-create-channel command. After a few minutes, I get the following error:
"Reason
Hello,
XSOAR's native playbook named 'QRadarFullSearch' has a task called 'Get QRadar search results'. Everytime we run this task, it fails with the following error log:
Failed to execute qradar-get-search-results command.
Error:
Traceback (most recent c
Hello all,
I am working with the task 'GetFailedTasks' withing the Integrations & Incidents Health Check playbook. When running this task within this system playbook I am only getting failed tasks from the beginning of the year and this is likely due
...
Hi,
I am trying to write some preprocessing rules to report on and update BitSight incidents. I only want to create incidents that have a grade of 'BAD' or 'WARN'. I do want to capture, however, when a given incident's grade is updated within BitSi
...
Hello,
I am attempting to use the 'bitsight-company-findings-get' command within my automation script, but I am getting an error after I run my script in the playground war room saying I'm using the invalid character '{' even though I copied the co
...
Hello all,
I am working on a use-case in which I need to store text based comments (Including MD) to context data for report generation. I have tried to create a script for this yet I have not succeeded. Is there a way to access the comment section i
...
Hi ,
In the settings section i created a new list
The list contains for example:
TEST,Mon Oct 30 2023,Teva.com/\teva.co.il/\test@gmail.com,user1,
BBLTD,Mon Oct 30 2023,10.0.0.14/\DASD.com/\sdasdas.co.il,user1,
BBMA,Mon Oct 30 2023,10.0.0.14/\DASD.c
Leveraging a "service desk plus" integration. I can take the same request and send it via postman successfully, but XSOAR is choking on it with a URI too large error:
===Server Log====
Command being called is service-desk-plus-request-create
Failed t
...
Hello,
When we want to sync a new object into production between tenants, we should first deselect all the objects in all tabs with the option "None" and then select only the objects we would like to sync. This action is critical, since if "None" is
...
Hi Team,
I need assistance in retrieving configurations for a specific integration instance to create an incident link. When I use the endpoint /settings/integration/search, it provides a comprehensive list of all integrations along with their source
Hello all!
I have an automation in which I'm trying to upload a file to the "Attachments" section of the current incident.
I can upload the file to the war room, but I would also like to move the file to the attachments section of the incident so
...
Hello,
So we have a playbook that is meant to send alerts via email in strikes. In each strike there is a link to a survey that has only YES/NO answers and based on the answers given be the recipients of those emails we want the playbook to follow a
...
