This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
The group would be case sensitive in your IDP so would be good to double
check that it matches "Chronicle SOAR Admin" exactly. It may be worth
checking IAM for the GCP Project as well to ensure that group has the
SOAR Admin and Chronicle API Admin ro...
If you have an api key for SOAR generated there is an endpoint you can
call: /api/external/v1/idp-group-mappingusing:
{tenant}.siemplify-soar.com/swagger/index.htmlThere is a default group
called "Chronicle SOAR Admin" that you can add to your IDP if...
Do you have a unified SecOps instance (SOAR and SIEM in the UI) or a
standalone SOAR? Do you use GAIA (Google auth), local SOAR accounts, or
another IDP? What change did you make? If you changed the IDP Group
Mapping in SOAR and use a 3rd party IDP, ...
