How can i change type (shorttext, multiselect) of incident field?

Hi all,

Earlier, I created a field called propagation_x and posted it to the main account. The type of this field is shorttext. I want to change the type of this field to multiselect. In YML file shows multiselect, but XSOAR shows as shorttext. How c

XSOAR integration fetching incidents past the set time.

We're only running one instance of the integration and we've set the first fetch timestamp to be 3 days.
When we run the integration, initially it only fetches incidents in the past three days and then after a while it starts fetching incidents as old

Moving a file

Hello,

Anyone know how I can run an automation in the playground, to save a string of text into a file locally on the system?

Xsoar unable to install in Client machine

Dear Team,

We are doing xsoar server installation 6.11 in Linux machine. But while running the package, we are unable to configure. We are getting many errors. Kindly help us on the same.

Thanks & Regards,

Priya M

XSOAR Integration with Cisco IronPort Email API - HTTP/1.0 500 The application raised an exception

Hi, I'm integrating XSOAR with Cisco Ironport, after entering enough information, I get an error like above. Has anyone encountered this case?

If image is upload in incident warroom, sometimes not able to open it

Hi,

Sometime when I'm trying to uploading images in incident warroom, its not coming as link, and not able to view what's in the image. attaching screenshots for reference.

Thanks

Disable local login for tenant accounts

Is it possible to disable local user login on tenants in xsoar. We want to allow local user login via main account only.

War Room Table to Layout view

Hi, I am building the playbook, where I have one task that is searching for incidents using the query as in:
!SearchIncidentsV2 query="type:FireEye NX Alert and fireeyenxalertvictimip:11.11.11.11 or 134.122.90.162"

With a help of community members I wa

splunk notable hash

Hello, i get some problems during setup my splunk to xsoar:

The problem i get is xsoar take the notable event hash filed like it was a file hash and i didn't want it in my playbook.

Some of you has already face this issue ? do you have resolved it

Cisco Umbrella Cloud Security integration API update

I have been notified by my firewall team that the Cisco Umbrella API is being updated to version 2. I have tried updating the creds that I am using to this new version but with no luck. Has anyone else been having the same issues? The current version