Help
FortiSOAR Discussions
doubleohseven
New Contributor II

Created on ‎04-04-2024 09:00 AM

Handling Crowdstrike API Rate-limiting errors

Hi all,


Wondering if anyone has any suggestions for dealing with 429 Rate Limit exceeded messages when using the Crowdstrike connector. I run multiple enrichment automations using different Crowdstrike actions and they often trigger the rate limiting error below:
{
"Error message": "HTTP Status Code 429: Too Many Requests Details:API rate limit exceeded. Connector :: crowd-strike-falconV2.3.1",
"failed_step_id": 530078,
"failed_workflow_id": 68102,
"status": "failed",
"execution_time": "42 seconds 480 ms"
}

I'm wondering how to approach this, perhaps using a "do until" loop to check to make sure status is not failed?

Any help would be greatly appreciated, thanks!

251
0 Kudos
1 Solution
doubleohseven
New Contributor II

Created on ‎04-11-2024 10:28 AM

Hi all, I was able to do this by adding a do until loop on the connector action that had the condition of vars.step_result.status == 'Success'

View solution in original post

194
1 REPLY 1
doubleohseven
New Contributor II

Created on ‎04-11-2024 10:28 AM

Hi all, I was able to do this by adding a do until loop on the connector action that had the condition of vars.step_result.status == 'Success'

195
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.