Dear Team ,We are unable to fetch incidents via web-hook integration , it thrown an error ({"detail":"Method Not Allowed"} )while testing your help would be greatly appreciated
We have a MT XSOAR deployment, and I need to move a created account that is on the main host to a different one, when I try to move the account I get the error "Account acc_XXXX could not be moved to HOST because address phoenix.scilabs.mx: missing port in address" Why is this happening?
Hello,I have multiple screenshots from various tasks in the playbook such as Rasterize among others from a Sandbox Integration. I would like to make individual widgets on the Layout that can display these Image Files Separately. 1. Can the images be displayed in different Widgets such as through !setincident... from a playbook level ?2. Can the...
!py script=`return_results(demisto.executeCommand("azure-sentinel-list-incident-entities", {"incident_id":"xxxxxxx-xxxxxx-xxxxx"}))`The above works and turns in human readable format; however i want to return the raw json. This works:!azure-sentinel-list-incident-entities incident_id=xxxx-xxxx-xxxx raw-response=true However this does not: !py sc...
Hi Everyone, We try to use twitter api on XSOAR.We created instince and try to test connection and get error: AttributeError: 'Client' object has no attribute 'say_hello' Anyone saw this error? Thanks for helps.
I can close an azure incident in xsoar war-room with the following:!azure-sentinel-update-incident incident_id="xx-xxxxx-xxxxx" status="Closed" classification="Undetermined" However when i try to re-open the incident in azure from war-room with the following i get the subsequent error:!azure-sentinel-update-incident incident_id="xx-xxxxx-xxxxx" ...
Dear Team, Getting an error when Integrate the SMAX with XSOAR. Failed to execute test-module command. Error: 'latin-1' codec can't encode characters in position 16-247: ordinal not in range(256) (85) Please help to resolve this Issue.
Hi all,A customer of ours is trying a curious thing and I am not sure if it is possible in general, so I guessed the best way would be to ask right away. Our customer created a XSOAR list, that contains a html string with context data variables in it, like ${testinput}.In a playbook with test incidents he has set the key (e.g. ${testinput} = "te...
I am attempting to ingest Qradar into the XSOAR using the Integration. I need to pull custom fields from the SIEM and what I need to understand is as follows;Is it preferable to pull these fields within an AQL Search at the playbook stage ?Or is it preferable to pull these fields from Qradar Integration setting ? The use case is as follows;I am...
Hello,I need to make an HTTP request to get suppressed incidents from the main account. Is anyone has an idea how can a filter those incidents? Thanks!
Hi allI would like to search in Cortex XSOAR for running timers that exceed a certain time. I tried it but it didn't worked out.It should work like this that I can search for an timer (in this case detectionsla the total duration) and afterwards it should show all INC that are still running (active) where the decetion sla is over 16 hoursWhile r...
Is it possible to automate deletion of phishing emails if the backend Exchange server is Exchange 2013? I noticed there is an integration for Exchange 2016 but I did not find one for Exchange 2013.
I need to open Support Case
Any thoughts on why this is failing; this always returns Entries Found regardless if there are entities or not. You can see in the screenshot above there are 0 results, no entries. When I run this script, you'll see the screenshot below. ------Script------##Check Sentinel for entities, if none, write a message to war roomexternal_id=demisto.inc...
Hi everyone, I was trying to make a playbook to extract indicators (Hash values, domains, IP addresses) from a PDF file. I tried to use the ReadPDFFile V2 utility, however it gives the below error on 2 of the PDF files I tried. Command: !ReadPDFFileV2 entryID="29@14" maxImages="20" auto-extract="inline"(Scripts)ReasonCould not load pdf file in E...
