I'm getting an error while trying to upload a 2.2MB plain-text file, the webgui only shows this message:
Failed to upload file to war room. Error: K(...) is null
What's the file size limit for uploads?
Thanks
I'm trying to get Cortex Data Lake integrated with our Cortex XSOAR Community Edition instance, and getting nowhere very quickly.
Reviewing the documentation: https://xsoar.pan.dev/docs/reference/integrations/cortex-data-lake
I am completely lost fin
...
Hi Guys,
Facing bit of a hiccup on playbook creation for Qradar. After the XSOAR incident closure I need to close the same alert related to that incident on Qradar too. However I cant find any function to do that in the documentation, I would really
...
Is the delete context feature added for 6.2 or just for the debugger? And will that affect if we have delete context tasks currently in our playbooks?
Let’s say my parent playbook is very big and I just want to test the subplaybook by itself. If the subplaybook has input, how can we pass it test data for the debugger?
Does the Content Type of the list affect how it is read in by an automation or playbook, or is that only for editor syntax highlighting? Previously, would input json into a list, but since it is read in as text, we would have to handle the data with
...
What are the limits for lists, number of lists and size of lists?
I'd like to take the generic polling concept and make it a little more specific, but I'm coming up short. I'm doing a QRadar search (although I suspect Splunk or anything else would be very similar.) The QRadarFullSearch playbook will poll and wait
...
Hi,
I am getting following error while trying to login to XSOAR through SSO. I have setup the SAML app on XSOAR with all the attributes provided by AD team.
AADSTS50011: The reply URL specified in the request does not match the reply URLs configured f
...
Hi All,
We wanna send an email notification, and that email content will be incident details and results of the analyst's analysis.
I checked marketplace and GitHub demisto repo but I didn't find development as I mentioned.
Our html email body schema
...
I'm working on a failsafe automation to shut down an integration if it fetches more than a certain threshold of events in a time period. Is it possible to disable an integration, or turn off the "fetches incidents" parameter, with a command? Or throu
...
Trying to learn how to use this thing. I've got a very simple playbook set up that uses the Slack integration to send a simple yes/no prompt to a user. Within the Playground, I'm able to successfully send simple messages via slack, so the connectio
...
