Veeam App for Palo Alto Networks XSOAR 1.0
User Guide
Related documents
Search

About Veeam App for Palo Alto Networks XSOAR

Veeam App for Palo Alto Networks XSOAR is a Cortex XSOAR content pack that allows you to monitor various security activities in your Veeam backup infrastructure:

  • Veeam Backup & Replication events related to malware detection and health state of the backup infrastructure components.
  • Alarms triggered by Veeam ONE.

The app gets information using Veeam Backup & Replication and Veeam ONE REST APIs and creates an incident for each security activity with Medium, High and Critical severity. You can manage incidents through Veeam Incident Dashboard and resolve them manually or automatically with built-in Veeam playbooks.

The content pack includes:

  • Veeam Backup & Replication REST API integration:
    • Multiple Veeam Backup & Replication integration instance support
    • Incident types and fields related to malware detection and health state of the backup infrastructure components
    • Incident classifiers and incoming mappers for incident types
    • Incident layouts for configuration backup, malware detection, and backup repository state
    • Set of playbooks to automate specific operations:
      • Start configuration backup
      • Start Instance VM Recovery with automatic or manual configuration
  • Veeam ONE REST API integration:
    • Multiple Veeam ONE integration instance support
    • Incident types and fields related to Veeam ONE triggered alarms
    • Incident classifiers and incoming mappers for incident types
    • Incident layout for triggered alarms
    • Playbook for resolving triggered alarms
  • Veeam Incident Dashboard
View all results across Veeam
Back to document search