Open fonk0rn opened 2 years ago
You can search the cases based on statuses. If it was soft deletion then only status was changed but the case itself should be in there. If it was forced deletion - its gone.
Hi. How to know, is it soft or forced deletion? I had checked if the cease exists using API, answer was "Case not found". Is it mean forced delete? Can we configure somewhere and change delete mode to "soft"?
Request Type
Question
Work Environment
Question
Hi. One of our SOC analysts had deleted the case. Is it possible to restore it and how to do this?
Thank you.