Hi All, I have 2 cases where I need good advise and best practise.
1. How you handle cases where is two or more diffrent alerts. Im using playbook with close alert but I can't close last alert. How to handle that to prevent closing case after closing one alert? Is there a way to use something like "close alert, if is the last alert, close case"?
2. How do you made constantly conversation during case? Im using exchange integration, is possible to Chronicle will track diffrent conversation without knowledge about subject? How do you using this integration in playbook? Is there a way to monitor constantly a mailbox and paste answer in proper case?
Page 1 / 1
- Closing the Alert will close the case if it's the last open alert in the case.
- in all of those integrations we have a send message - wait for message combination of actions that allow to track replies to specific messages. it needs something to track, in exchange in particular we are tracking based on the message id of the email we sent with other integration action, "Send Email"
Reply
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.