Contact sales
Details

This workflow works with an incident automation rule to send a Slack message when a new incident is created in Cisco XDR.

Description

This workflow works with an incident automation rule to send a Slack message when a new incident is created in Cisco XDR. You can limit which incidents Slack messages are sent for by adding criteria to the automation rule. If you want to send messages to different channels for different types of incidents, you can duplicate the workflow and configure multiple different automation rules.

Note: After importing the workflow, be sure to create an incident automation rule or add the workflow to an existing rule.

Target: Slack

Steps:

  • Extract the short incident ID
  • Build the Slack message payload
  • Send the Slack message
  • Check if sending the message was successful:
    • If it was, set the workflow result
    • If it wasn't, output an error
Required targets

This workflow requires the following targets to be available before it can be run.

Integration targets

  • Slack
About
Author
Cisco
Version
v1.2
Integration
Average rating
No ratings yet
Authorship
Cisco Managed
Contact and support information
https://support.cisco.com
External links

Content Licensing

Developer Community

Related workflows
Logo for Slack
Slack - Create Channel for New Incident
Cisco Managed
This workflow works with an incident automation rule or playbook to create a Slack channel when incidents are created in Cisco XDR.
Incident Response
Learn more
Logo for Slack
Slack - Send Message for New Incident
Cisco Managed
This workflow works with an incident automation rule to send a Slack message when a new incident is created in Cisco XDR.
Learn more