Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Security Solution] Error coming up when click on add endpoint exception. #104442

Closed
ghost opened this issue Jul 6, 2021 · 9 comments
Closed

[Security Solution] Error coming up when click on add endpoint exception. #104442

ghost opened this issue Jul 6, 2021 · 9 comments
Assignees
@MadameSheema
Labels
bug Fixes for quality problems that affect the customer experience fixed impact:critical This issue should be addressed immediately due to a critical level of impact on the product. QA:Validated Issue has been validated by QA Team:Detections and Resp Security Detection Response Team Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. triage_needed v7.14.0

Comments

@ghost
Copy link

ghost commented Jul 6, 2021

Describe the bug
Error coming up when click on add endpoint exception.

Build Details:

version: 7.14.0-BC1
Commit:071a74e02f82b79a4a10026b5c9e02d593112fd4
Build:42292

Browser Details:
N/A

Browser Details
All

Preconditions
1.Kibana users should be logged in.
2.Endpoint should be installed
3. Alerts should be generated say mimikatz.

Steps to Reproduce

  1. Go to Security App.
  2. Click on alerts tab.
  3. Click More actions.
  4. Click on Add endpoint exception.
  5. Observer that Error coming up when click on add endpoint exception.

Actual Result
Error coming up when click on add endpoint exception.

Expected Result
No Error should not when click on Add endpoint exception

What's Working

  • N/A

What's Not Working

  • N/A

Screen-Shot
error
@ghost ghost added bug Fixes for quality problems that affect the customer experience Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. labels Jul 6, 2021
@elasticmachine
Copy link
Contributor

Pinging @elastic/security-solution (Team: SecuritySolution)

@ghost ghost added v7.14.0 impact:high Addressing this issue will have a high level of impact on the quality/strength of our product. labels Jul 6, 2021
@ghost
Copy link
Author

ghost commented Jul 6, 2021

@manishgupta-qasource Please review!!

@manishgupta-qasource
Copy link

Reviewed & assigned to @MadameSheema

@MadameSheema MadameSheema added the Team:Detections and Resp Security Detection Response Team label Jul 7, 2021
@elasticmachine
Copy link
Contributor

Pinging @elastic/security-detections-response (Team:Detections and Resp)

@MadameSheema MadameSheema added impact:critical This issue should be addressed immediately due to a critical level of impact on the product. triage_needed and removed impact:high Addressing this issue will have a high level of impact on the quality/strength of our product. labels Jul 7, 2021
@MadameSheema
Copy link
Member

@peluja1012 @spong can you please take a look at this? thanks :)

@ghost ghost mentioned this issue Jul 15, 2021
Closed
@MadameSheema
Copy link
Member

@deepikakeshav-qasource can you please check if this is still happening on the latest BC? Thanks

@ghost
Copy link
Author

ghost commented Jul 16, 2021

Hi @MadameSheema,

We have validated this ticket on 7.14.0 BC3 build and observed that Error coming up For Windows when click on add endpoint exception on alerts page. Please find our below observations:

Build Details:

VERSION: 7.14.0 BC3
BUILD: 42545
COMMIT: c314921a9893e0b46d9a3958f5520e3d6b1ce7d5
ARTIFACT: https://staging.elastic.co/7.14.0-682a8012/summary-7.14.0.html

Observation on Windows OS

Error coming up when click on add endpoint exception on alerts page

Screen Recording:

Windows_exception.mp4

Observation on Mac OS

Add endpoint exception is working fine on alerts page.

Screen Recording:

Mac_OS.mp4

Observation on Linux OS

Add endpoint exception is working fine on alerts page.

Screen Recording:

Linux_exception.mp4

Thanks!!

@dplumlee dplumlee mentioned this issue Jul 16, 2021
Merged
2 tasks
@MadameSheema
Copy link
Member

@deepikakeshav-qasource can you please check the fix of this issue on BC4? Thanks :)

@ghost
Copy link
Author

ghost commented Jul 26, 2021

Hi @MadameSheema,

We have validated this ticket on 7.14.0 BC4 build and observed that issue is Fixed. Able to create the endpoint exception without any error for not trusted alert file. However, trusted field is displaying empty in add endpoint exception modal. We have reported the separate bug for same. [#106663]

Build Details:

VERSION: 7.14.0 BC4
BUILD: 42656
COMMIT: 82a4f6a7fa23946667599787cdb1b2d82c1d0dfb
ARTIFACT: https://staging.elastic.co/7.14.0-b3779639/summary-7.14.0.html

Screenshot:

Endpoint_exception.mp4

Hence, We are closing this issue and Marking as QA Validated.

Thanks!!

@ghost ghost added the QA:Validated Issue has been validated by QA label Jul 26, 2021
@ghost ghost closed this as completed Jul 26, 2021
This issue was closed.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@MadameSheema MadameSheema

Labels
bug Fixes for quality problems that affect the customer experience fixed impact:critical This issue should be addressed immediately due to a critical level of impact on the product. QA:Validated Issue has been validated by QA Team:Detections and Resp Security Detection Response Team Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. triage_needed v7.14.0
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@peluja1012 @elasticmachine @MadameSheema @manishgupta-qasource