Splunk SOAR

Community Activity

Using webhooks in SOAR Hello!I'm trying to integrate Splunk SOAR - Splunk - Jira to update the ticket status. The source of truth will be Ji... by ivan5593 Explorer in Splunk SOAR 05-28-2024 0 1	0	1
Phantom health alert notification Hi team, Could you please help me on how to get health alert notification in phantom.Thanks in advance. Regards,Haris... by harishlnu Engager in Splunk SOAR 05-21-2024 0 8	0	8
How to resolve error's while installing Splunk SOAR? Hey everyone, I'm at a loss for what this is, I always get stuck at install step 27 and then it throws these errors... by konka4 Splunk Employee in Splunk SOAR 05-15-2024 0 2	0	2
MS Graph API duplicate email ingestion into Splunk SOAR Hello,Good day!MS Graph API duplicate email ingestion into Splunk SOAR: We have Splunk SOAR v 6.1.1, and the Graph A... by DeepthiNavuru Engager in Splunk SOAR 05-07-2024 1 0	1	0
SPLUNk SOAR- Splunk Run query Hi Team,Could you please help me on running query in Splunk,The query starts with \| ldapsearch.run query only have co... by harishlnu Engager in Splunk SOAR 04-25-2024 0 2	0	2
Is there a way to whitelist a specific container to prevent it from being deleted? hey guys, with data retention being set, is there a way to whitelist a specific container to prevent it from being de... by dennyw Engager in Splunk SOAR 04-23-2024 0 1	0	1
Approval manual task without login to Phantom Hi Team,Could you please help me on below requirement, how to make manual task approval without approver login to th... by harishlnu Engager in Splunk SOAR 04-22-2024 0 1	0	1
Change Aritfact Dependency Default or Run a Playbook without an Artifact Due to some oddities of our environment, my team needs default fields in order to run some playbooks automatically. W... by SOARt_of_Lost Path Finder in Splunk SOAR 04-18-2024 1 2	1	2
SPLUNK SOAR Data Collection over Email Hi Team,I am having requirement where i need to send an email for approval, if they reply to that email i need to rea... by harishlnu Engager in Splunk SOAR 04-17-2024 0 1	0	1
View history of same containers Hello, 1. Is there an option (built in or manually built) for a container to view history of the older containers wit... by meshorer Path Finder in Splunk SOAR 04-16-2024 0 1	0	1
Web Server location Where is the web server actually installed to and ran from for SOAR in a RHEL environment? Unlike Splunk Web UI where... by stevenbo Explorer in Splunk SOAR 04-11-2024 0 4	0	4
how to change timestamp in activity log from UTC? hello all, I noticed that timestamp in activity log is in UTC, and also while using timer app and in the event name a... by meshorer Path Finder in Splunk SOAR 04-09-2024 0 1	0	1
Ingestion stuck due to overload Hi, I have an app that ingest offenses from a SIEM system (qradar). One time there were a few thousands offenses to ... by meshorer Path Finder in Splunk SOAR 04-04-2024 0 3	0	3
Playbook format block not using filtered data I'm using the Cisco FireAMP app to return the trajectory of an endpoint, and the data includes a list of all running ... by michael3 Explorer in Splunk SOAR 03-27-2024 0 3	0	3
Getting results of phantom.act() within custom code block? I'm trying to get at the results of a phantom.act() action run, more specifically the Splunk HTTP app "get file" act... by cmg Explorer in Splunk SOAR 03-26-2024 0 3	0	3
Customize Warm Standby Display Message Good morning! Is there a way to update the display message on the Warm Standby instance when users navigate to it? by catherinelam Explorer in Splunk SOAR 03-21-2024 0 3	0	3
Integration HTTP https://splunkbase.splunk.com/app/5904 Hi, I ran the HTTP splunk integrations with https://splunkbase.splunk.com/app/5904 I have a problem sending a put req... by marq198 Observer in Splunk SOAR 03-20-2024 0 2	0	2
Reconfigure SOAR Web UI/URL/Ports I have SOAR installed and am trying to figure out how to make configuration changes, specifically for accessing the w... by stevenbo Explorer in Splunk SOAR 03-19-2024 0 0	0	0
can't add artifact field with message parameter hello all!I am trying to add field to an artifact with "update artifact" action (phantom app).i am trying to add a '... by meshorer Path Finder in Splunk SOAR 03-14-2024 0 4	0	4
List of dicts from a "custom code block" into a "filter block" HelloI'm trying to pass a list of dicts from a "custom code block" into a "filter block", to run either ip_lookup, ha... by glc_slash_it Path Finder in Splunk SOAR 03-07-2024 0 2	0	2
get datapath variable as a string rather then a list hello all,I have an app that to perform an action I cant insert the required parameter as a list. but as a string.thi... by meshorer Path Finder in Splunk SOAR 02-28-2024 0 3	0	3
Is there a way to use multivalue fields in SOAR? Is there a way to use multivalue fields in SOAR? I have not been able to find a good article on how to do this.We hav... by staylor Engager in Splunk SOAR 02-26-2024 1 3	1	3
How to Set Proxy for SAML2 Authentication Method As the title suggests, our system needs a proxy to hit our SAML2 authentication service, but I don't see an option to... by catherinelam Explorer in Splunk SOAR 02-26-2024 0 0	0	0
Advanced SOAR python, playbook custom function use Hi, I've got a problem with this playbook code block, the custom functions I try to execute seem to hang indefinitely... by jokr Observer in Splunk SOAR 02-22-2024 0 2	0	2
Finding the log when a auth-token is regenerated I was wondering if anyone knew where I could find it either in the logs or even better the audit REST endpoint if an ... by bcline-lm New Member in Splunk SOAR 02-07-2024 0 0	0	0