Help
FortiSOAR Knowledge Base
FortiSOAR: Security Orchestration and Response software provides innovative case management, automation, and orchestration. It pulls together all of an organization's tools, helps unify operations, and reduce alert fatigue, context switching, and the mean time to respond to incidents.
Andy_G
Staff
Staff

Created on ‎06-04-2020 09:14 AM

Article Id 197413

Technical Note: [FortiSOAR / Cybersponse Tricks'n'Tips] Authenticating in an anonymously authenticated API trigger playbook

Description

Though you can trigger a playbook anonymously using the option in an API trigger, the playbook will not be able to do anything without proper permissions. For anonymously authenticated playbooks, you need to have it use an appliance user with proper permissions.


Steps to do this:

1. Create a new appliance user with proper permissions. Copy the private and public keys

2. Immediately after the anonymous auth API trigger, add a "Set API Keys" step

3. Paste in the public and private keys there


The playbook will now authenticate and be able to perform the actions needed.


Common errors leading to this:

- Unauthorized for url: https://127.0.0.1/api/3/...

- A Token was not found in the TokenStorage.


234
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.