https://community.splunk.com/t5/Getting-Data-In/How-to-pull-data-from-elasticsearch-to-Phantom/m-p/685243#M114328 <P>have find the answer to solve this?</P> Wed, 24 Apr 2024 05:26:19 GMT bambarita 2024-04-24T05:26:19Z https://community.splunk.com/t5/Getting-Data-In/How-to-pull-data-from-elasticsearch-to-Phantom/m-p/589025#M103334 <DIV class=""> <DIV><SPAN>I have elasticsearch database installed on one server. I am trying to pull data from elasticsearch to phantom SOAR. Connectivity between elasticsearch app and phantom is working fine but, I am getting following error while pulling data from elasticsearch.<BR /></SPAN></DIV> <DIV>&nbsp;</DIV> <DIV><SPAN>Loaded action execution configuration</SPAN></DIV> <DIV><SPAN>Successfully added containers: 0, Successfully added artifacts: 0</SPAN></DIV> <DIV><SPAN>1 action failed Unable to load query json. Error: Expecting value: line 1 column 1 (char 0)</SPAN></DIV> <DIV>&nbsp;</DIV> <DIV><SPAN>Configuration:</SPAN></DIV> <DIV><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="amol_0-1647327153349.png" style="width: 400px;"><img src="https://community.splunk.com/t5/image/serverpage/image-id/18498i1AB903D841706626/image-size/medium?v=v2&amp;px=400" role="button" title="amol_0-1647327153349.png" alt="amol_0-1647327153349.png" /></span> <P>&nbsp;</P> </DIV> </DIV> Tue, 15 Mar 2022 15:26:42 GMT https://community.splunk.com/t5/Getting-Data-In/How-to-pull-data-from-elasticsearch-to-Phantom/m-p/589025#M103334 amol 2022-03-15T15:26:42Z https://community.splunk.com/t5/Getting-Data-In/How-to-pull-data-from-elasticsearch-to-Phantom/m-p/685243#M114328 <P>have find the answer to solve this?</P> Wed, 24 Apr 2024 05:26:19 GMT https://community.splunk.com/t5/Getting-Data-In/How-to-pull-data-from-elasticsearch-to-Phantom/m-p/685243#M114328 bambarita 2024-04-24T05:26:19Z