Calculate Severity - Critical assets

Deprecated

Use Calculate Severity - Critical Assets v2 playbook instead

DEPRECATED. Use "Calculate Severity - Critical Assets v2" playbook instead. Determines if a critical assest is associated with the invesigation. The playbook returns a severity level of "Critical" if a critical asset is associated with the investigation.

This playbook verifies if a user account or an endpoint is part of a critical list or a critical AD group.

Dependencies

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks

This playbook does not use any sub-playbooks.

Integrations

This playbook does not use any integrations.

Scripts

Commands

This playbook does not use any commands.

Playbook Inputs

Name	Description	Default Value	Source	Required
CriticalUsers	The array of usernames of critical users (comma-separated).	-	-	Optional
CriticalEndpoints	The array of hostnames of critical endpoints (comma-separated).	-	-	Optional
CriticalGroups	The array of DN names of critical AD groups (comma-separated).	-	-	Optional
Account	The user account to check against the critical lists.	None	Account	Optional
Endpoint	The endpoint to check against the critical lists.	None	Endpoint	Optional

Playbook Outputs

Path	Description	Type
Severity	The output severity	string

Playbook Image

Calculate_Severity_Critical_assets

PAN-OS

Cortex Data Lake

Cortex XSOAR

PAN-OS

Cortex Data Lake

Cortex XSOAR

Calculate Severity - Critical assets

Deprecated

Dependencies

Sub-playbooks

Integrations

Scripts

Commands

Playbook Inputs

Playbook Outputs

Playbook Image

PAN-OS

Cortex Data Lake

Cortex XSOAR

PAN-OS

Cortex Data Lake

Cortex XSOAR

Deprecated

Dependencies#

Sub-playbooks#

Integrations#

Scripts#

Commands#

Playbook Inputs#

Playbook Outputs#

Playbook Image#

Dependencies

Sub-playbooks

Integrations

Scripts

Commands

Playbook Inputs

Playbook Outputs

Playbook Image