List of Contributions

Akhilesh Deshmukh

This individual is no longer active. Application functionality related to this individual is limited.

Contact Details

My Content

1 to 20 of 26 total

RE: Workaround for LDAP and Active Directory function for Resilient

Posted By Akhilesh Deshmukh Fri April 16, 2021 09:13 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hello Shane, Thank you for your reply. I will check with the permissions which needs to be given to the service account on AD. Thanks, ------------------------------ Akhilesh Deshmukh, Data Analyst, SecurityHQ ------------------------------

RE: Resilient scripting log is empty

Posted By Akhilesh Deshmukh Fri April 16, 2021 04:11 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hi Paul, Thanks for the explanation. I too had the same question as asked above. Your reply helped me to save my time. Thanks, ------------------------------ Akhilesh Deshmukh, Data Analyst, SecurityHQ ------------------------------

Workaround for LDAP and Active Directory function for Resilient

Posted By Akhilesh Deshmukh Thu April 15, 2021 01:45 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hello, We are trying to integrate Active Directory with Resilient platform to perform actions such as enabling/disabling user or resetting user password. For which, there is an app available as 'LDAP and Active Directory functions for Resilient' on IBM App Exchange. After installation, we need ...

RE: Add multiple items to Reference Set in QRadar from Resilient

Posted By Akhilesh Deshmukh Fri March 26, 2021 01:25 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hi Mark, Thank you for your response. I have devised a workaround for this. Since, it is not possible to add multiple IP's from fn_qradar_function, I am adding all the IP's as artifact to the Incident from the script. Once the IP's get added as artifact, I have implemented a rule to add all those ...

Add multiple items to Reference Set in QRadar from Resilient

Posted By Akhilesh Deshmukh Thu March 25, 2021 06:38 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hi All, I am trying to add multiple IP's from Resilient to QRadar Reference Set. However, I am getting 422 status_code saying 'The request was well-formed but was unable to be followed due to semantic errors'. When I try to add a single IP, it gets add perfectly. But when I try to pass lets ...

RE: Getting SSL Error while using fn_utilities function

Posted By Akhilesh Deshmukh Wed March 24, 2021 06:18 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hi Mark, Thanks for your response. I came across this code snippet. However, I am getting issues as to how to include this code while making API call using fn_utilities function. "Call Rest API" from utilities function allows me to use only certain parameters to pass. Thanks, ------------- ...

Getting SSL Error while using fn_utilities function

Posted By Akhilesh Deshmukh Tue March 23, 2021 08:43 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hi Team, We are receiving SSL Error while making request via REST API. I have attached the screenshot with this post. Below is the error observed on backend logs (resilient circuits server): resilient_lib.components.integration_errors.IntegrationError: "HTTPSConnectionPool(host='systemx.pla ...

Getting SSL Error while using fn_utilities function

Posted By Akhilesh Deshmukh Tue March 23, 2021 08:42 AM
Found In Library: IBM Security SOAR

How to Execute Powershell Commands from Resilient ?

Posted By Akhilesh Deshmukh Thu March 18, 2021 10:33 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hi All, I want to access .txt file on our local shared drive using Resilient. Meaning, I want to access test.txt file in Example folder on 10.20.30.40 shared drive i.e. 10.20.30.40\Example\test.txt file. For that, I am trying to use fn_utilities function. However, I am unable to chalk out a way ...

RE: API Integration with BMC Remedy ITSM

Posted By Akhilesh Deshmukh Thu March 18, 2021 10:12 AM
Found In Egroup: IBM QRadar SOAR \ view thread
Hi Mark, Thanks for the update. Looking forward to hear from you. Thanks. ------------------------------ Akhilesh Deshmukh, Data Analyst, SecurityHQ ------------------------------

API Integration with BMC Remedy ITSM

Posted By Akhilesh Deshmukh Wed March 17, 2021 06:16 AM
Found In Egroup: IBM QRadar SOAR \ view thread
Hi Team, We intend to integrate BMC Remedy ITSM platform via REST API. We want to create, read, update and delete tickets from Resilient into BMC Remedy platform. Is it possible to integrate Resilient with BMC via REST API ? If possible, how we can achieve this ? Thanks, ------------- ...

RE: Issue while performing API request from Resilient Circuits

Posted By Akhilesh Deshmukh Wed March 17, 2021 06:13 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hi Liam, Thank you very much for replying. Fortunately, we have resolved the issue for now. The issue was related to our proxy server which we have solved internally. Thanks, ------------------------------ Akhilesh Deshmukh, Data Analyst, SecurityHQ ------------------------------

Issue while performing API request from Resilient Circuits

Posted By Akhilesh Deshmukh Tue March 16, 2021 10:13 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hi All, We are facing issues while making API requests from Resilient-Circuits server. We are trying to fetch IP details from IBM Xforce via API. To achieve this, we have installed utilities function. However, while executing the utilities function we are getting ConnectionError. The traffic ...

Issue while performing API request from Resilient Circuits

Posted By Akhilesh Deshmukh Tue March 16, 2021 10:12 AM
Found In Library: IBM Security SOAR

RE: Execute Shell Commands using Resilient

Posted By Akhilesh Deshmukh Tue March 09, 2021 07:35 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hi Ben, I got your point. The post-processing script can be handled to treat the exitcode which is coming as None. But, I am trying to figure out how the exitcode is not getting generated even after successful execution of the command. If we treated the post-processing script to handle None value, ...

RE: Blocking IP on Palo Alto Firewall

Posted By Akhilesh Deshmukh Tue March 09, 2021 05:50 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hi Aleksandar, Thank you very much for sharing this info with us. It is great that we can block IP addresses on Palo Alto firewall using panorama function in Resilient. I tried to configure the workflows, however, it did not work for us. It seems we are missing on some minor details. Will it ...

RE: Execute Shell Commands using Resilient

Posted By Akhilesh Deshmukh Tue March 09, 2021 04:20 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hi Ben, I was able to successfully execute shell commands on local as well as remote computer from Resilient. The output of the command executed is added as an Incident Note. However, I am facing one issue now. I am not able to get the exitcode. Please check below screenshot. This is the post-process ...

RE: Execute Shell Commands using Resilient

Posted By Akhilesh Deshmukh Tue March 09, 2021 12:35 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hi Ben, Thanks for your response. I have gone through the documentation for fn_utilities. I have performed the steps in same way as given in the documentation. You can see the steps in the screenshots above. However, it is not helping us to execute the shell command remotely. Is there any way ...

RE: Execute Shell Commands using Resilient

Posted By Akhilesh Deshmukh Mon March 08, 2021 04:29 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hi Ben, I am trying to execute "ls -alh" command on the remote computer just to check how the remote shell command execution works. Below is the screenshot for reference. Please let me know, if this is incorrectly configured. Also, this is how the function has been configured in Resilient. ...

RE: Create custom fields to track time in changing Tasks.

Posted By Akhilesh Deshmukh Wed March 03, 2021 04:56 AM
Found In Egroup: IBM Security QRadar SOAR \ view thread
Hi Ben, Thanks for replying. I acknowledge that custom fields can be tracked. But what I am looking for is how can I add the Custom field (lets say, field MTTD) to the Task widget. Currently, the Task widget is not editable. Hence it shows, the values from Phase field. Refer below screenshot. ...