Description | This article offers instructions to investigate playbook failures in FortiSOAR. |
Scope | All supported versions of FortiSOAR. |
Solution |
When any playbook fails or does not complete successfully, check the following information to determine the root cause:
1) Check whether the playbook is custom or default. 2) If the playbook is custom and never worked, review the playbook design. 3) If the playbook is default, check the error message in the output during the step that fails. 4) For more error details, make sure to run the playbook in DEBUG mode. 5) Check the input of the failed step and compare it with output of the previous step to verify whether the details are passed correctly. 6) Check the following logs from more details:
# /var/log/cyops/cyops-workflow/celeryd.log
See the FortiSOAR playbook guide for more information on configuring playbooks: https://docs.fortinet.com/document/fortisoar/7.3.1/playbooks-guide/331279/introduction-to-playbooks |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.