Skip to main content

CyberArk EPM SOC Response

This Playbook is part of the CyberArk Endpoint Privilege Manager Pack.#

Supported versions

Supported Cortex XSOAR versions: 6.10.0 and later.

Activates a CyberArk EPM SOC risk plan for a specified endpoint, based on the incident severity. Endpoint name and external IP are taken from the incident to uniquely identify the on EPM

Dependencies#

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks#

This playbook does not use any sub-playbooks.

Integrations#

This playbook does not use any integrations.

Scripts#

  • IsIntegrationAvailable

Commands#

  • cyberarkepm-activate-risk-plan

Playbook Inputs#

NameDescriptionDefault ValueRequired
endpoint_nameFQDN of target endpointOptional
endpoint_external_ipExternal IP of target endpointOptional

Playbook Outputs#

There are no outputs for this playbook.

Playbook Image#

CyberArk EPM SOC Response

Edit this page
Report an Issue