Microsoft Sentinel Incident custom details fetch in XSOAR

Hi everyone,

I've configured the Microsoft Sentinel integration instance in XSOAR, and it's successfully fetching incidents along with associated entities. However, I'm unable to retrieve the custom details (also known as additionalData or customDetai

Filter Certain Search Strings using URL Filtering stopped working

We set up a custom URL category proxy-search following the instruction here https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Filter-Certain-Search-Strings-using-URL-Filtering/ta-p/52441

This worked fine but recently it has stopped wo

Understanding ENUM Constants in Cortex XSIAM XDR Data XQL

Hi Everyone, 

I’ve seen a lot of questions lately about the usage of constant ENUMs in Cortex XDR/XSIAM, especially after Unit42 released some IOC detection queries. These queries often contain clauses like:

Bootp

We have discovered a few bootp devices which are unable to get an ip - looks like unsupported with Palo.

Anyone have come across this issue and have a suggested work around?

Palo IOT - Get the Device Inventory API Endpoint

Hello, interested in exporting device list from iot platform.

I see a API endpoint for this but it doesn't have examples or document how to do filtering or page next since the it is capped to 1000 devices per request. please advise. 

https://pan.

Authentication with PA440 using Microsoft 365 Entra ID

We are in the cloud with Azure GCC High environment and have no on prem AD. We are searching to see if there is a way to set up our PA440 to authenticate for a VPN using the user accounts on Entra ID in M365? Does anyone have any experience with this

XML API for Global Search

Hi All,
I am trying to test XML API for global search . I am trying to use for search security rule with given description . 
ANy help for this.

Can this OID notificate the expired certificates for SSL decryption and Global Protect?

Hi,

I found the below OID in SNMP Trap.
Can this OID notificate the expired certificates for SSL decryption and Global Protect?

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000HBfzCAG

====
panCryptoCertExpiryTrap  .1.3.6.1

Website Filtering Dillema

Good morning, I've got a situation where some students are going to an inappropriate gaming site that also bypasses the content filtering I have in place and allows access to some adult content, this is one of the websites: https://friv2025.com, the

Cortex XDR API requests

Hi everyone,

There is an problem im facing with. The problem is -- Some of API requests are not shown in "Management Audit Logs". There is another API's which ones can be shown in "Management Audit Logs". Is there other option for this case? To col

AWS IPSec tunnel active/active HA with BGP

Looking for some help here.  I have an ongoing case with support concerning AWS tunnel issues.  My production FWs are active/active but not in sync.  Just always been that way, it's the way I inherited it.  I have 4 tunnels to AWS (2 on each FW) BGP

Panorama can't show specific timeframe log

Hi community,

I have a question. I’m experiencing an issue where Panorama does not show logs for a specific time frame. However, when I check directly on the firewall, the logs for that time frame are visible. I've already confirmed that the log fo

Need sample logs for all Next Generation Firewall log events for Integration Testing

Hi team,

I'm currently working on integrating log analysis and would like to collect sample log events for all Next Generation Firewall log event types

Is there a way to access a reference dataset or sample payloads for each log event type for testing