Hi Guys,
I have list of integration instances that i need to disable/enable in one click.
I didn't see any function or command in the system that can do it.
There is any other way to do that?
Dear Community,
I'm getting the following issue in Talos integration.
Error in Talos Feed Integration. Verify that the server URL parameter is correct and that you have access to the server from your host. (85)
...
Hi all,
Can I install single server fist and then convert it to multi tenant? I don't want to lose any data during conversion. As far as I understand, there is only 'export content' operation. But I want to convert it directly to multi-tenant witho
...
Hi,
We've got an scenario where we are fetching mails from a mail server. When an email is received in the mail server, it applies some ruling and send it to a folder, then with XSOAR we've got N instances, one per folder and this is how we are cla
...
How can I download the dockerimage file of the previous version of XSOAR? For example, the dockerimage file of version 6.11.
If I use command “wget https://download.demisto.com/download-params?token=xxxxxxx&email=user@paloaltonetworks.com&downloadNam
...
Can it link into 3rd party tools such as Proofpoint or Symantec dlp?
This question was asked as part of our Cortex XSOAR Customer Success Webinar: Prisma VM Alerts & DLP Playbooks
Dear All,
i was trying to install COrtext SOAR in an Airgap (offline)Enviorment with no internet where i was refering cortex offline installation guide, and i i could not complte the installation and stuck in uploading docker dependaci file to which
...
Hi ,
Is there anyone else who gets this Error ? how do I solve it ?
Its updated to the latest version , The server URL , username and password are correct.
I have created an integration that produces many alerts and I have a few thousand incidents that are currently in the Pending state. The plabyook has yet to run etc. What I would like to is select the incidents from the "Incident" page and change the
...
Hello All,
I have a question, i have mapped an incident from qradar with the playbook i've created.
At first it's worked, the incident severity was "high". but later until now, the severity become "unknown".
What is the main cause of this issue?
Tha
Hi!
I want to extract specific key data from context of multiple incidents. The context key I'm looking for is not under "incident". Specifically, I have many incidents of type "Phishing" and want to output the contents of "Recipient Selection.Answ
...
The code below, creates an incident with attachment uploaded but in the incident itself, when I see the context, I dont see any file.
Since there is no entryID for the file, I cannot read the attachment and also cannot run the playbooks.
Any ch
...
Morning everyone,
I hope that you are doing well
I have a little problem. We have implemented the XSOAR in our customer environment and configure th EWS O365 content pack for phishing attacks but since we do not have a case, we cannot show to the
...
Hi,
I am trying to ingest our taxii feed into XSOAR 6.12 with following steps:
Hello All,
I have a question, i have integrate qradar into xsoar, but why only 2 fetched data shown in the classification & mapping?
Is there any configuration should i modify ?
Thank You
