Hello, We'd like to create Notes in the layout. We can use the option "Mark results as note", but it shows the command executed. We'd like to show a clean note, nothing else.
Hello, We are using a playbook to run again tasks which are already running. Just to reset the task. However, when the command "taskComplete isAutoRun=True" is used, it doesn't run again. How can we avoid this? Is there another option?
Hi all! Thanks a lot in advanced for your help. We are trying to connect to a mail server using the newest release of the Microsoft Exchange Integration. We've followed the instructions detailed here: https://xsoar.pan.dev/docs/reference/articles/microsoft-integrations---authentication#self-deployed-application Both, using the Cortex XSOAR...
Hi, I have been trying to integrate Splunk Enterprise with xsoar and I keep getting this error message with url: /services/auth/login (Caused by SSLError(SSLError(1, '[SSL: WRONG_VERSION_NUMBER] wrong version number (_ssl.c:1007)'))) ] (2604) (2603) how can I fix this and get the integration to work. pls I need help
I have added a custom field in Jira. I am trying to print the information in jira by fetching through XSOAR. I am using this command {"fields":{"customfield_11503":{"value":"${incident.techniqueid}"}}} where technique id is getting fetched in XSOAR, I can see in the input field after executing the task, but the same is not getting printed in Ji...
Hi All, I have integrated Jira in XSOAR, while editing a Jira issue I can see following fields: I want to update resolution field of Jira from XSOAR. I tried using {"fields":{"resolution":{"value": "SIEM - Benign Positive"}}} in issuejson under jira-edit-issue. Can anyone please assist how can I achieve this. Thank You.
Hi, I have integrated Jira in XSOAR, I am creating a jira ticket with XSOAR using jira-create-issue automation. I want to add assignee name through XSOAR, I tried various combinations like username of jira, email id, etc in assignee id and assignee field in XSOAR, but assignee field is not getting updated in Jira. I have tried using issuejson co...
Hello, we successfully have integrated Proofpoint Threat Response Logs into our XSOAR instance. One of the problems we noticed right away is that it seems like its only a one way API flow, as in we cannot send any commands from XSOAR back to Proofpoint Threat Response. For example, with the integration we created a layout with certain button scr...
Hi community, I'm running a XSOAR CE Edition (Version 6.11.0 Build 300044), which is weirdly not able to download content pack updates. I receive the following error message:
Dear all, I am trying to deploy MT XSOAR on a customer and they are using QRadar 7.3.5 with API 19.0. I have noticed that some incidents do not get the same mapping, yet they use Qradar Generic Incoming Mapper and all incidents are set as QRadar generic. For instance, Type A incident gets incidents.label.start_time mapped as incidents.start...
Hi, When testing send mail new integration on load balancing group in XSOAR getting "timeout while waiting for engine to answer. Wait time:1m0s. Note that command is supported from engine version 6.0 and above But we are running on 6.10 version".for this i added the below mentioned server setting but issue still persist: key: engine.test.command...
https://xsoar.pan.dev/docs/reference/integrations/crowdstrike-falcon#30-cs-falcon-process-details https://xsoar.pan.dev/docs/reference/integrations/crowdstrike-falcon#51-cs-falcon-rtr-list-processes https://xsoar.pan.dev/docs/reference/integrations/crowdstrike-falcon#7-cs-falcon-run-command Hi Folks,In my context I do have the malware process p...
Hi All, I have added a custom field in jira (MITRE Tactic). I have mapped this field in XSOAR with 2 fields: Mitre Tech ID(short text type) and MITRE Technique ID(Multi select / Array). Below is the command I was using and the output I was getting: "customfield_11503": "${incident.mitretechid}"${incident.mitretechniqueid} "customfield_11503": ""...
Hi community, I want to create a task which sends the required query and options(single select, input box ) directly to stakeholders where they can update the data in the email itself and submit it without going to the xsoar web survey page. Thanks & regards Aman
Evertyime I run the playbook the old values appear again in the "Incident field" setting. I tried to :- Edit the field with the new values and save it.- Completely delete the field and create is again.- Deleted "field associated with the question" in the playbook and re-configured it again. Does anyone have an idea how to fix this?
