We’ve recently purchased SecOps SOAR capabilities while the SecOps SIEM is in place for more than 2 years.
We have custom rules and also the alerting is available. But no cases are being created in SOAR.
I could see the Google Chronicle is configured. Would lile to know if I’m missing something here, since I’m new to SOAR and SecOps SOAR as well.
Page 1 / 1
Hi
If you want to confirm that the connector is running, head over to the ingestion settings within the SOAR settings page: https://cloud.google.com/chronicle/docs/soar/marketplace-integrations/google-chronicle#chronicle-alerts-connector
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.