Looking for 2FA/MFA/OTP Solution to Support Authentication for Cortex XSOAR v8 (On-Prem)

Hi everyone,

I'm currently exploring ways to enhance the security of our Cortex XSOAR v8 environment (deployed on-premise) by implementing an OTP / 2FA / MFA authentication mechanism for the login process.

Here are the key requirements:

• The solution

Export Playbook and Import

Hi,

Iam trying to figure out how to perform the following:

Export a playbook, overwrite some of its tasks (send-mail Exchange) and upload the playbook back to XSOAR.

I found in Docu an API for playbook import as yaml but no export API.

If Anyone co

XSOAR 6.x compatible with Vsphere 8

Hi Team,

I have a customer who wants to know whether the xsoar 6.x version is compatible to vsphere version 8.

Please assist.

SSL VS TLS Active Directory Authentication

what version of SSL and TLS version is used here?

our AD is listening to TLS and not SSL. but only ssl can work and TLS get these errors. 

XSOAR 6.X with expired Elastic Search Enterprise license

XSOAR 6.13 with expired Elastic Search Enterprise license is not working properly. Can I downgrade to the Elastic Search basic license until it get purchased to restore the XSOAR operations?

After purchased the Enterprise license, can I upgrade again

Problem 1 in 1,000,000? I hope not

hello community! I hope you are doing well. I'm here to ask a question that PAN support didn't know how to deal with and maybe some of you have already gone through the same thing. It was Saturday morning and xsoar and its functions were completely f

XSAOR - 503 Service Temporarily Unavailable Issue

Hello,

I'm currently implementing Cortex XSOAR On-Prem 8.8. I'm fairly new to this product. 

I have deployed the VM and cluster configuration completed successfully. I was able access GUI and do the basic configurations. After I updated the versi

Integration of SIEM Instances with Load Balancer IPs

Can we integrate two instances of the SIEM, given that both IP addresses belong to the same SIEM but are associated with load balancer IPs? However, if we integrate both instances, there is a slight chance of data duplication. What would be the best

Cannot add Links between Tasks - messed up in browser.

Hi All,

Weird one.. so recently this started and I tried chrome, firefox and edge.. all does the same.. even in private windows.

i can edit a playbook, add tasks etc.. but when i try to add the 'link' between tasks, the link either disappears or sh

whois integration issue

Hi Everyone, I am enriching domain with domain command of whois but i got issue if any one of domain has no data at their server side for example [Domain1,Domain2] whois will return error if any one of domain data is missing. I just want if no data f

proofpoint-tr-get-list (Gets items for the specified list)

Hello,

In proofpoint threat response integration there is a command : proofpoint-tr-get-list (Gets items for the specified list). I need some guidance on what this command do and what list ID needs to provide to get contents?

proofpoint-tr-get-list

Not able to link more than 50 incident into first incident

Hi Team,

I want the know in one incident how many incident we can link using pre-processing rule. Is there is any limitation kindly let us know.

Currently i am not able to link more than 50 incident into one incident.

Cortex XSOAR 

Question about the execution of the Set Assignee Task

In my playbook, I have a task that runs the Set Assignee Task script, sending an email as a parameter. During the flow execution, this task remains in the waiting status, displaying the message: waiting for user input to continue this task. I would l