Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Splunk SOAR
Splunk SOAR
×
Are you a member of the Splunk Community?
Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Premium Solutions
- :
- Splunk SOAR
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Discussions
| Thread Info | |||||
|---|---|---|---|---|---|
|
While compiling and installing the Splunk phantom Application which I have developed, I am getting an error with erro...
by
chandraprathi
Explorer
in
Splunk SOAR
07-22-2020
|
0
|
8
| ||
|
|
When parsing the email message body for inclusion in the ticket in Jira, parsing fails on special characters or non-A...
by
brandylee1993
Explorer
in
Splunk SOAR
08-05-2020
|
0
|
1
| ||
|
What is best practice for the HEC endpoint(s) for the "Phantom Remote Search" app in a clustered environment?
Per t...
by
jeffrey_berry
Path Finder
in
Splunk SOAR
08-06-2020
|
0
|
1
| ||
|
|
Phantom 4.9 supports Markdown notes and it is possible to add markdown note using GUI. But how to use markdown with t...
by
Izzet
New Member
in
Splunk SOAR
08-14-2020
|
0
|
1
| ||
|
|
Hi everyone,
It might me a silly question
The simplified case.
3 artifacts within the event with 3 dif...
by
Izzet
New Member
in
Splunk SOAR
08-12-2020
|
0
|
1
| ||
|
|
Hi all,
I created a playbook that runs a Splunk search query and I can see in the playbook's debugger and in the ev...
by
Augliv
Loves-to-Learn
in
Splunk SOAR
09-08-2020
|
0
|
1
| ||
|
|
Hello, whenever I try to add a new artifact I got the following error
phantom.act(): 'add_artifact_1' cannot be run...
by
linuts
Engager
in
Splunk SOAR
09-08-2020
|
0
|
1
| ||
|
|
Hello,
I have a playbook that is currently in production and I don't want to randomly test it without asking the qu...
by
tbrown110
New Member
in
Splunk SOAR
09-11-2020
|
0
|
1
| ||
|
I've configured a pair of Phantom servers to use warm standby. As per the documentation, I ran ibackup.pyc --setup af...
by
gf13579
Communicator
in
Splunk SOAR
07-22-2020
|
0
|
3
| ||
|
|
Can one use Splunk phantom for auto-remediation?
What real-life use cases are applicable to the use of Phantom?
by
rhugo
Observer
in
Splunk SOAR
08-31-2020
|
0
|
1
| ||
|
|
I'm trying to close a Notable in ES from Phantom. I'm using the update event action from the Splunk app (v1.3.41) but...
by
gf13579
Communicator
in
Splunk SOAR
07-20-2020
|
0
|
3
| ||
|
|
Hi. My request to join the Phantom Community was approved, however the link I was provided has since expired and I ca...
by
brycekaline
Engager
in
Splunk SOAR
08-18-2020
|
1
|
1
| ||
|
|
How can I Troubleshoot playbook issue where the wrong raw log is being included in the ticket.For example, where tick...
by
brandylee1993
Explorer
in
Splunk SOAR
08-05-2020
|
0
|
1
| ||
|
|
I can't quarantine device by automation.
Action "set quarantine approved" failed.
Message:Er...
by
waleksandrowski
New Member
in
Splunk SOAR
08-04-2020
|
0
|
0
| ||
|
|
If I try to search phantom container events by label, status or several other fields, I don't see events relating to ...
by
gf13579
Communicator
in
Splunk SOAR
07-29-2020
|
0
|
1
| ||
|
|
I'm very new to Phantom. Can someone provide some guidance or advice for naming playbooks and what has worked or hasn...
by
willhart802
Engager
in
Splunk SOAR
05-20-2020
|
0
|
2
| ||
|
|
Dear All,
I'm testing Splunk Phantom using the Community Edition to evaluate this product that seems great.
Con...
by
LouisdesVaux
New Member
in
Splunk SOAR
07-21-2020
|
0
|
0
| ||
|
Good morning,
I woud like to test Splunk Phantom Community Edition in my home lab. When I try to install it follow...
by
clopmz
Explorer
in
Splunk SOAR
02-25-2020
|
1
|
4
| ||
|
|
When I run Get Users against the group named G-SomeGroup it returns just 1 result. The group contains 3 members
I c...
by
gf13579
Communicator
in
Splunk SOAR
06-23-2020
|
0
|
0
| ||
|
|
Hi, I am using Phantom to solve login issue in Okta. If a user is facing login issue in Okta, then I want to create a...
by
prakashbesra
New Member
in
Splunk SOAR
05-27-2020
|
0
|
1
| ||
|
|
Not sure why I get stuck with a "Loading" screen. Latest version of Splunk.
What am I missing?
by
garciajd123
New Member
in
Splunk SOAR
06-10-2020
|
0
|
2
| ||
|
|
I just recently completed the Phantom Admin and Playbook Development training and am in the process of using what I'v...
by
williamchenyp
Explorer
in
Splunk SOAR
05-25-2020
|
0
|
2
| ||
|
|
I have completed Phantom playbook that I need to run every 5 minutes. I know that the Timer app can be used to schedu...
by
AlexBryant
Path Finder
in
Splunk SOAR
12-03-2019
|
0
|
3
| ||
|
|
So as per the Daily and Monthly selection index has to vary
Daily = index1Monthly=index2
Thanks in Advance!
...
by
kavyakanne
Engager
in
Splunk SOAR
05-17-2020
|
0
|
4
| ||
|
We're receiving this error from an email that it is unable to process
Apr 30 16:34:37 splunk-phantom01-nonprod SPA...
by
aocvy
Engager
in
Splunk SOAR
05-04-2020
|
0
|
0
|
Become An Expert
Top Labels
-
administration
71 -
authentication
1 -
configuration
116 -
development
127 -
field extraction
1 -
installation
55 -
MissionControl
2 -
other
1 -
troubleshooting
161 -
upgrade
15 -
using Phantom
109 -
using SOAR ⁄ Phantom
304
Get Updates on the Splunk Community!
Observe and Secure All Apps with Splunk
Join Us for Our Next Tech Talk: Observe and Secure All Apps with SplunkAs organizations continue to innovate ...
Splunk Decoded: Business Transactions vs Business IQ
It’s the morning of Black Friday, and your e-commerce site is handling 10x normal traffic. Orders are flowing, ...
Fastest way to demo Observability
I’ve been having a lot of fun learning about Kubernetes and Observability. I set myself an interesting ...
