Update Case
Update case by case name or ID.
Basic Parameters
| Parameter | Description |
|---|---|
| Assignee | - |
| Case Name or ID | The name or the ID of the case. |
| Status | - |
| Title | - |
Advanced Parameters
| Parameter | Description |
|---|---|
| Add Tags | Those tags will be added to the current case. |
| Custom Fields | - |
| Description | - |
| End Date | - |
| Flag | - |
| Impact Status | - |
| Observable Rule | - |
| PAP | Prioritized Asset Profile, the severity level that is used to indicate the importance of an asset. White: The asset is not critical. Green: The asset is important, but not critical. Amber: The asset is critical. Red: The asset is essential. |
| Remove Tags | Those tags will be removed from the current case. |
| Severity | - |
| Start Date | - |
| Summary | - |
| TLP | Traffic Light Protocol, a set of designations used to ensure that sensitive information is shared with the appropriate audience. CLEAR: unlimited formerly. GREEN: community-wide. AMBER: limited distribution. AMBER+STRICT: restricts sharing to the organization only. RED: personal for named recipients only. |
| Tags | Set the case tags to this array. |
| Task Rule | - |
Workflow Library Example
Update Case with Thehive and Send Results Via Email
Preview this Workflow on desktop