Your Workdesk provides a place where you can quickly respond
to actions related to a playbook. You can view attached messages before
deciding on a response.
To see more information before you respond, click View Case. The Case
page opens where you can view the case details, and manually approve or
deny the action.
To respond to a pending action, follow these steps:
Go to Your Workdesk > Pending Actions.
Click Respond. The Respond side drawer
opens with details regarding the playbook step. If enabled by the
administrator, a timer shows how much time you have left to respond.
If you are a standard user, click Execute or Skip.
If you click Execute, the action is approved.
If you click Skip, the action is skipped and the playbook
continues to run.
As a collaborator user, click Approve or
Decline, and then click Save.
If you click Approve, the status for the pending action is
updated to Action Approved.
If you click Decline, a dialog opens. Enter the reason for
declining the action. This reason is then added to the case wall, and the status for
pending action is updated to Action Declined.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-03-06 UTC."],[[["Your Workdesk allows for quick responses to actions related to playbooks within Google SecOps SOAR."],["Users can view attached messages and case details before deciding to execute, skip, approve, or decline an action."],["Standard users can execute or skip pending actions, while collaborator users can approve or decline them."],["Declined actions require a reason to be entered, which is then added to the case wall for reference."],["You can find additional help and information regarding Google SecOps via the Google Cloud Community link."]]],[]]
