Hi Experts! We are ingesting the "Offenses" from QRadar SIEM to
FortiSOAR. My ingestion schedule is configured for every 15 minutes. In
QRadar, what happens, when an offense is generated, it has few events in
it. As long as the offense is not closed,...
Hi Experts! Kindly suggest some best practices to configure the backup
and restore mechanism of the FortiSOAR data and configuration file? The
idea is to use the backed-up file (data and configuration) and restore
the FortiSOAR again with minimum dow...
Hi Team,I have FSR7.3.x. I have installed and configured the Arbor DDoS
connector in FSR. Now I want to block the IPs on Arbor DDoS through
SOAR. But when I see the actions available in the connector, the Block
IP or Block IoCs kind of action is not ...
Hi Experts, In FrotiSOAR (FSR version 7.2.2) GUI, in System Health
Dashboard, under the "Playbook Execution Monitoring", I see Queued
Workflows and Active Workflows. The Active Workflows count remains quite
high above 200K and Queued Workflows count ...
Hi, the command: #csadm db --backup BackupDirectoryPath
--exclude-workflow --exclude-audit didnt work for me. I changed the
BackupDirectoryPath with the actual directory path in my system. Screen
shot is attached for your reference. Kindly suggest fu...
Hi Experts! Can we generate a report on closed alerts of last shift? For
example, when a morning shift is ended, and a handover is given to
afternoon shift, can we generate the report of the closed alerts that
were generated during the morning shift?...
Hi Experts! There is a requirement for the Shift Management. I create
the Shifts in FSR by manually entering all the shifts like Morning,
Afternoon and Night Shift and provide the start time and duration of
each shift. After that, the team members fo...
Secondly, I would like to know this if I am only keeping the backup file
that is being generated using the command # csadm db --backup, then the
generated backup also contains the configuration backup as well? I mean,
if I restore this backup, the da...
Hi Experts, As per the official documentation shared in above replies,
it states that: "Optionally, you can specify the --exclude-workflow
option to exclude all the "Executed Playbook Logs" and the
--exclude-audit option to exclude all the "Executed ...