Cortex XSOAR 6.0 is now available! The newest version of Cortex XSOAR is now available. Check out the Cortex XSOAR Release Notes for release details, including new features and breaking changes.
We are running a multi tenant xsoar server and I noticed that we are using CentOS 8 Linux which reached End of Life recently. There is also the stream version of CentOS8. For this version the EOL date is May 31st, 2024. I am slightly confused as it says in the xsoar administrator's guide centos8 is unsupported because it reached EOL. Should I do...
I have the AZ AD Identity Protection integration setup and working, but I am trying to get some custom filters to work without much luck. Does anyone have an example of what OData queries are relevant with this integration? Would like to be able to filter_expression to something like risklevel=high but everything I try comes back with a "Invali...
How do I get the api token/key for opsgenie to use in xsoar instance. Opsgenie settings gives me an api key while saving, but the api throws an incorrect key format error. Also, there is no native inbuilt integration in opsgenie for xsoar to directly generate a key
Greetings,I am pulling in rasterized images into ServiceNow from URLs, and ideally I'd like to name them the URL they are pulled to eliminate some confusion. But I am not seeing a good way to do this, I have tried adding "URL${inputs.URL}" to the filename in the rasterize automation, but it appends every URL that was pulled into the filename, a...
Hi, I have a seemingly simple task which i can't figure out how to handle. I want to import a csv file in the context, having column names as the subkeys. And then I want to get rid off some excessive subkeys/columns.My steps are:1. upload a file from file share using smb-download - SUCCESS2. Import file in the context keys using ParseCSV automa...
Hi All, I am new to Cortex XSOAR. I have one question. lets say we are fetching the incidents for any specific time interval and now considering SOAR recommended fetch limit of 200 Incidents per fetch, there can be situation when we might have more than 200 incidents and in this case we will have backlog of these remaining incidents for next fet...
Hi, There we have 2 different CP-FW instance running but in block playbook we are unable to block 1 ip address for 2 CP-FW instance. It gives (unauthorized 401 - session expired) error. In case of single instance deployment same playbook works with no error.
Hey there, Running a query - current_unique_IDs = demisto.executeCommand("query", {"query":get_current_uniqueIDs_query_SQL, "using-brand":"Generic SQL"}) when i execute - demisto.results(type(current_unique_IDs) I get But when i try list functions it says it is a dict. but when i try to do dict functions I get a non hashable error. I want to ...
I am getting disk quota exceeded error while running commands both on the playbook and the consolehere is the full error.2022-04-29 06:42:22.4327 error Container exit with error. container name: [demistoserver_pyexec-01aab3da-d09e-4478-84b6-650a5860ddeb-demistopython33.10.4.27798-acc_XXX-30] error: [exit status 126] stderr: [Error: OCI runtime e...
is main a fork of the public demisto GitHub? **Note: this is a question from our CS Webinar: Dev to Prod Configuration and Best Practices in Cortex XSOAR
Does it have to clone via ssh can it not use HTTPS and a GitLab token? **Note: this is a question from our CS Webinar: Dev to Prod Configuration and Best Practices in Cortex XSOAR
If one will only have a Prod and Dev environment, would you recommend that Dev follow Prod requirements? **Note: this is a question from our CS Webinar: Dev to Prod Configuration and Best Practices in Cortex XSOAR
Can you share a handy tip to protect branches in gitlab settings to prevent deletion? **Note: this is a question from our CS Webinar: Dev to Prod Configuration and Best Practices in Cortex XSOAR
