Hello community, I have come across the issue when I got identical token generated forSOAR user "REST" that I am using for SIEM-SOAR integration and the same was in the SplunkappforSOAR. When I...
...xisting SOAR cluster with an already existing external postgresql db server. How can I connect my splunkSOAR nodes to an external db? to be specific, if I already backed up the phantom db and r...
Hello! I'm working on setting up the integration between SplunkSOAR and Splunk using the SplunkAppforSOAR Export. I was able to configure my SOAR server in the app and verify connectivity, but I...
Hi Community, Could any of you please let me know if there is any way or pre written apptoconnect Azure Sentinal with SplunkSOAR. As for now, I am not able to see and find any appfor...
In a part of splunksoar (phantom) playbook I would like, in some cases, to send a syslog msg to a remote syslog server. I did not find any well-known app which can help me, so I figure out c...
We had previously been successfully using the Splunk SMTP appforSOAR (Phantom) until the beginning of this year. We are currently on v5.5.0 of SOAR and v2.3.0 of the SMTP app. I am w...
Hi Splunkers, we have toconnect our On Prem SOAR Solution (Palo Alto Cortex) to a Splunk Cloud instance. The dedicated SOAR integrations use API and ask: Username Password URL/Hostanem/IP A...
I would like to understand how SplunkSOAR sends data to the indexer endpoints that are configured under Administration -> Search Settings -> Indexers. I would like to send data to two d...
I am trying to query a Splunk search head using the Splunkconnector from SOAR. However, my playbook is giving an error in the action block with the below error: Failed toconnecttosplunk server....