server not starting after upgrade to 6.2 version

hi All, I have changed my etc/demisto.conf file to move data folders(https://docs.paloaltonetworks.com/cortex/cortex-xsoar/6-2/cortex-xsoar-admin/manage-data/move-data-folders-to-another-location-on-the-server.html) and after upgrading my app server to 6.2 from 6.1 cortex soar application is not starting(https://docs.paloaltonetworks.com/cortex...

Minemeld Alternative

Hello , On of our customer is dependent on their partner for Minemeld EDL The Partner is hosting the Minemeld server and now our customer is planning to build their own Minemeld As Minemeld is no longer supported by PAN and is purely an open Source support product , What would be the best alternative and cost effective approach for the customer ...

Cortex Doubt Operations

Hello everyone;Cortex:The console reports 481 agents of which it gives with lost connection 110, in the licensing section it indicates 371 agents installed of the 500 licensed, so it seems that it does not take into account those of lost connection, I wanted to confirm this extreme since, according to the panel, we could be close to rushing the ...

Missing docker images in air-gapped context

Hi everyone,I'm facing a very strange issue. I've updated server version to 6.5 and loaded all images included in .tar file downloaded through personal link (27,2 GB) and testing integrations I used to take advantage when company didn't have antivirus packet inspection (so at that time demisto use to download images on demand) but I get lots of ...

Delete a single file from multiple files

I have created a sub-playbook(which is running in a loop for multiple inputs) generating multiple files json's and csv's. I want to delete json's only and keep csv's for a single run and at the end of loop, I want only csv's.How can I do that?I have tried delete context and in "Key" field I am passing entry ID of the file but I am getting error ...

Fore scout NAC Integration with PaloAlto

Dear Team, Kindly share the Document for Fore scout NAC Integration with PaloAlto.

Cannot edit indicator in multi tenant account

I need to set in an indicator configuration to avoid the use of some instances for enrichment, but I'm not able to edit the indicator in an account of the multi-tenant deployment, (IP), In the master account I'm able to edit without problems, I tried changing some propagation labels and syncing the accounts with no successm what else can I do? I...

Create custom canvas

Hi guys, i need to create a relationship/attack map for our analysts, im wondering if i can somehow use the canvas to make such diagram/map.. there is anyway we can use the canvas library or something similar already existing on xsoar instead of creating all from scratch ? thanks

Problem with file uploading

I'm getting an error while trying to upload a 2.2MB plain-text file, the webgui only shows this message: Failed to upload file to war room. Error: K(...) is null What's the file size limit for uploads? Thanks

XSOAR Community Edition -> Cortex Data Lake integration

I'm trying to get Cortex Data Lake integrated with our Cortex XSOAR Community Edition instance, and getting nowhere very quickly. Reviewing the documentation: https://xsoar.pan.dev/docs/reference/integrations/cortex-data-lake I am completely lost finding the Token, ID, and Key values to tie it to our Cortex Data Lake instance. The documentation...

Question from "A developer's guide to XSOAR 6.2" webinar: Can playbook triggers be mocked?