Splunk SOAR

Community Activity

Is there a way to whitelist a specific container to prevent it from being deleted? hey guys, with data retention being set, is there a way to whitelist a specific container to prevent it from being de... by dennyw Engager in Splunk SOAR 04-23-2024 0 1	0	1
Approval manual task without login to Phantom Hi Team,Could you please help me on below requirement, how to make manual task approval without approver login to th... by harishlnu Engager in Splunk SOAR 04-22-2024 0 1	0	1
Change Aritfact Dependency Default or Run a Playbook without an Artifact Due to some oddities of our environment, my team needs default fields in order to run some playbooks automatically. W... by SOARt_of_Lost Path Finder in Splunk SOAR 04-18-2024 1 2	1	2
SPLUNK SOAR Data Collection over Email Hi Team,I am having requirement where i need to send an email for approval, if they reply to that email i need to rea... by harishlnu Engager in Splunk SOAR 04-17-2024 0 1	0	1
View history of same containers Hello, 1. Is there an option (built in or manually built) for a container to view history of the older containers wit... by meshorer Path Finder in Splunk SOAR 04-16-2024 0 1	0	1
Web Server location Where is the web server actually installed to and ran from for SOAR in a RHEL environment? Unlike Splunk Web UI where... by stevenbo Explorer in Splunk SOAR 04-11-2024 0 4	0	4
how to change timestamp in activity log from UTC? hello all, I noticed that timestamp in activity log is in UTC, and also while using timer app and in the event name a... by meshorer Path Finder in Splunk SOAR 04-09-2024 0 1	0	1
Ingestion stuck due to overload Hi, I have an app that ingest offenses from a SIEM system (qradar). One time there were a few thousands offenses to ... by meshorer Path Finder in Splunk SOAR 04-04-2024 0 3	0	3
Playbook format block not using filtered data I'm using the Cisco FireAMP app to return the trajectory of an endpoint, and the data includes a list of all running ... by michael3 Explorer in Splunk SOAR 03-27-2024 0 3	0	3
Getting results of phantom.act() within custom code block? I'm trying to get at the results of a phantom.act() action run, more specifically the Splunk HTTP app "get file" act... by cmg Explorer in Splunk SOAR 03-26-2024 0 3	0	3
Customize Warm Standby Display Message Good morning! Is there a way to update the display message on the Warm Standby instance when users navigate to it? by catherinelam Explorer in Splunk SOAR 03-21-2024 0 3	0	3
Integration HTTP https://splunkbase.splunk.com/app/5904 Hi, I ran the HTTP splunk integrations with https://splunkbase.splunk.com/app/5904 I have a problem sending a put req... by marq198 Observer in Splunk SOAR 03-20-2024 0 2	0	2
Reconfigure SOAR Web UI/URL/Ports I have SOAR installed and am trying to figure out how to make configuration changes, specifically for accessing the w... by stevenbo Explorer in Splunk SOAR 03-19-2024 0 0	0	0
can't add artifact field with message parameter hello all!I am trying to add field to an artifact with "update artifact" action (phantom app).i am trying to add a '... by meshorer Path Finder in Splunk SOAR 03-14-2024 0 4	0	4
List of dicts from a "custom code block" into a "filter block" HelloI'm trying to pass a list of dicts from a "custom code block" into a "filter block", to run either ip_lookup, ha... by glc_slash_it Path Finder in Splunk SOAR 03-07-2024 0 2	0	2
get datapath variable as a string rather then a list hello all,I have an app that to perform an action I cant insert the required parameter as a list. but as a string.thi... by meshorer Path Finder in Splunk SOAR 02-28-2024 0 3	0	3
Is there a way to use multivalue fields in SOAR? Is there a way to use multivalue fields in SOAR? I have not been able to find a good article on how to do this.We hav... by staylor Engager in Splunk SOAR 02-26-2024 1 3	1	3
How to Set Proxy for SAML2 Authentication Method As the title suggests, our system needs a proxy to hit our SAML2 authentication service, but I don't see an option to... by catherinelam Explorer in Splunk SOAR 02-26-2024 0 0	0	0
Advanced SOAR python, playbook custom function use Hi, I've got a problem with this playbook code block, the custom functions I try to execute seem to hang indefinitely... by jokr Observer in Splunk SOAR 02-22-2024 0 2	0	2
Finding the log when a auth-token is regenerated I was wondering if anyone knew where I could find it either in the logs or even better the audit REST endpoint if an ... by bcline-lm New Member in Splunk SOAR 02-07-2024 0 0	0	0
Email user and get response back Hi, I am looking send an email to user with simple yes/no response which I can then use to handle the case. I know Pa... by rodneyjerome Explorer in Splunk SOAR 02-07-2024 0 2	0	2
Server 500 Error: Missing /tmp//.s.PGSQL.6432 File Our current SOAR servers, fresh install on AWS EC2s, 500's each night. Upon investigation, it looks like there's this... by catherinelam Explorer in Splunk SOAR 02-06-2024 0 4	0	4
How to I access the Splunk SOAR UI over 443? As the title suggests, I got some SSL certs from my teams, but because the default SSL port is 8443, it's not recogni... by catherinelam Explorer in Splunk SOAR 02-06-2024 0 0	0	0
for how much time events are stored in the server? hello all!is there a default time that events (containers/cases) are stored in the SOAR server to approach to?and if ... by meshorer Path Finder in Splunk SOAR 02-04-2024 0 5	0	5
Query to find out the searches in Soar Automation ? Hi all,I need to clarify the correlation searches within SOAR. Is there any way to identify them? by AL3Z Builder in Splunk SOAR 02-03-2024 0 5	0	5