Intel471 Watcher Alerts

This Integration is part of the Intel471 Feed Pack.

Supported versions

Supported Cortex XSOAR versions: 6.0.0 and later.

Intel 471's watcher alerts provide a mechanism by which customers can be notified in a timely manner of Titan content that is most relevant to them.

Configure Intel471 Watcher Alerts on Cortex XSOAR

1. Navigate to Settings > Integrations > Servers & Services.

2. Search for Intel471 Watcher Alerts.

3. Click Add instance to create and configure a new integration instance.

   Parameter	Description	Required
   Fetches incidents		False
   Username	Titan username	False
   Password	Titan API key	False
   Maximum number of incidents per fetch		False
   Traffic Light Protocol Color	The Traffic Light Protocol (TLP) designation to apply to indicators fetched from the feed	False
   Incidents Fetch Interval		False
   Severity	The severity to apply to incidents	True
   Watcher group UID(s)	The UID(s) of the watcher group(s) for which alerts should be fetched	False
   First fetch timestamp (<number> <time unit>, e.g., 12 hours, 7 days)	How far back in time to go when performing the first fetch.	False
   Use system proxy settings		False
   Trust any certificate (not secure)		False

4. Click Test to validate the URLs, token, and connection.

Fetched Incidents Data

---

Returns the Intel 471 Watcher Alerts. Creates incidents in Cortex XSOAR and populate the incident details field with the alert content.