Skip to main content

Calculate Severity - Critical assets

This Playbook is part of the Deprecated Content (Deprecated) Pack.#


Use Calculate Severity - Critical Assets v2 playbook instead.

DEPRECATED. Use "Calculate Severity - Critical Assets v2" playbook instead. Determines if a critical assest is associated with the invesigation. The playbook returns a severity level of "Critical" if a critical asset is associated with the investigation.

This playbook verifies if a user account or an endpoint is part of a critical list or a critical AD group.


This playbook uses the following sub-playbooks, integrations, and scripts.


This playbook does not use any sub-playbooks.


This playbook does not use any integrations.


  • Set


This playbook does not use any commands.

Playbook Inputs#

NameDescriptionDefault ValueSourceRequired
CriticalUsersThe array of usernames of critical users (comma-separated).--Optional
CriticalEndpointsThe array of hostnames of critical endpoints (comma-separated).--Optional
CriticalGroupsThe array of DN names of critical AD groups (comma-separated).--Optional
AccountThe user account to check against the critical lists.NoneAccountOptional
EndpointThe endpoint to check against the critical lists.NoneEndpointOptional

Playbook Outputs#

SeverityThe output severitystring

Playbook Image#