any problems integrating with government tenants (gcc)? This question was asked as part of our Cortex XSOAR Customer Success Webinar: XSAOR and O365 Integration
Is it possible to change the default administrator account name in XSOAR?
Hi,I am running a query in splunk search automation, The output I am getting includes too many brackets. I want to edit the output and I want to further use that output in different task. Can anyone please suggest how can I edit the splunk search output.
Hello, I'm working in a XSOAR Dev to Prod environment. The connection from Dev to it's repository branch was broken a while back. When updating the password I'm getting the following message asking me to discard all of my local Dev changes. I tried connecting the dev side of XSOAR to it's existing branch, and also a new branch. Same ...
Hi Community, I tried integrating XSOAR with NW v12.2, but getting below error: 1. used this api link also, but no luck: https://192.168.11.131/rest/api/incidents 2. created new user "soar" with integration-server.api.access 3. both SOAR and SIEM can ping each other. local firewall and iptables are off. No idea, what I'm missing. Any sugg...
Hi, I am trying to deploy Cortex XSOAR in Centos 7.9 version. In the XSOAR help document there is a pre-requisite for the kernel versions of Linux, as shown in the screenshot below, But when i checked the Kernel version of Centos 7.9 it is 3.10.0-1160. Centos 7.x series doesn't have the mentioned kernel versions. What to do? Kindly suggest.
Hi, I am trying to integrate this Json Sample Incident Generator with XSOAR. In the integration its asking for "The raw JSON string to use as the sample data". For this what value should i provide. Can anyone help me with an example? Thanks in advance! Nithin
Hello,We have integrated QRadar with Cortex XSOAR. I am creating playbook that should be sending email to the Client for triggered alert. Now, I wanted to events fields, Virus total reputation that shows in analysis in the email body. Questions are,How to add event's fields in the email body via variables?How to add reputation from integrated TI...
Hello everyone, I have issue with text widget which is getting the value from automation. The automation have two mandatory fields that are going to get input when playbook executed. Automation sets the list data by getting user input which is we want to display in the text widget. Even though the list data updated, text widget is not updati...
Hello, How can this error be solved?
Hello, I'm changing a subplaybook which could affect to many playbooks. Is there a way to know in which playbooks are used this specific subplaybook?
Hello, I'm trying to create a dataframe from two lists from the context: key1: 0:value1 1:null 2:value3 key2: 0:value1 1:value2 2:value3 When I call them using demisto.getContext(...), the null value is not passed, like if the key doesn't exist. So my first list becomes, without a row: key1: 0:value1 1...
Help required to install cortex Xsoar community edition on AWS,Please be informed that I have file in my PC and need to pull that in to EC2 instance. I will not be able to install it with the url as I have reached maximum number of attempts and system is throwing below error "HTTP request sent, awaiting response... 400 Bad Request2023-10-10 14...
Hello, We're feeding XSOAR with a lot of incidents. To avoid this, we created a job which deletes incidents each week. However, due to the amount of them, the command "SearchIncidentsV2" fails, it's no capable to search them. How can we free space by deleting incidents in a massive way?
Hello community, I am having a problem retrieving fields in XSOAR from XDR. I get most of the fields, but there are some that do not reach XSOAR, such as, for example, the "action_evtlog_data_fields" (it is not that they do not appear in the context, it is simply that the incident in XSOAR does not have those fields, as shown in the picture)....
