So we're using XDR Prevent (not Pro) here. Seems all the training on PAN's site is strictly geared towards the Pro version, and github hasn't been very fruitful yet.I'm wondering if anyone has any playbooks or workflows or (crosses fingers) scripts t...
Hello, A beginner here. It seems that after initial installation when trying to install new integrations and addons from Marketplace, I keep getting warnings about missing Docker images. If I list all the images with /docker_images I see the ones tha...
Hello, I am running the Community Edition and have not found anything concerning MFA for xSOAR users. What would be the preferred way to enable MFA for users like Analysts and Administrators?
Dear all,wanted to explore some features in the community edition, but the Web GUI doesn't come up.Checking from the console, I see that the server is only listening on IPv6:netstat -antActive Internet connections (servers and established)Proto Recv-...
Hello all, We're trying to edit the layout of an incident in the Main Account tennant in order to display output of splunk searches. When adding the "War Room" section in the layout we're asked to select a war room filter from existing list (see belo...
We have Palo Alto Global Protect set up and it works very well with various web applications, however it does not work with the Demisto/XSOAR web interface. It just shows a blank page, although all connectivity is allowed and I see packets flowing. T...
Hello all, Our goal is to create a Service Now ticket from a playbook, using the Service Now integration, with a given ticket template (ticket template = ticket with predefined field). To do so with the API we send a request to the following URL: htt...
Hello all We are using Cortex XSOAR Version Version 6.0.0; Build 79522 and having problems with Jobs.I've created a Job, which calls a playbook. this playbook is done withing 1 minute - but the Jobs-Status is always on "running". The playbook has a "...
Hello allWe are using Cortex XSOAR Version Version 6.0.0; Build 79522 and having problems to generate a valid schedule in the Jobs.I would like to add a Job, which runs on first Firday of the Month.The Human View part has no Monthly recurring tasks.T...
Hello guys, When analyzing a phishing case, I would like to block a sender for all the company. I've read in the Microsoft doc and they say you can do it by creating a blacklist. I've not been able to find it in XSOAR. Is there a way of doing that? K...
Hello all We are using Cortex XSOAR Version Version 6.0.0; Build 79522 and having problems to generate a valid schedule for a Tenable.SC, Command "tenable-sc-create-scan" If I enter one of the pre-defined options, like "Ical" I do get error back:Erro...
Hi,I filled out the form for the community edition at https://start.paloaltonetworks.com/sign-up-for-community-edition.html. I have received a confirmation email and an email for more information I have replied. unfortunately I get no response to use...
In this demo, we show you how to get up and running with the Cortex XSOAR mobile app and how to use some of the most popular features, including: DashboardsIncident summary and several IR capabilitiesView and complete tasksWar Room chat
This announcement applies to all customers currently running a version of Cortex XSOAR 5.5 older than (B78409) and that use the API, Splunk App, or SumoLogic to push incidents to XSOAR. We identified an issue in these releases that when pushing incid...
The newest version of Cortex XSOAR is now available. Check out the Cortex XSOAR Release Notes for release details, including new features, bug fixes, and enhancements.
