https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/cortex/m-p/459704#M1465 <P>Hi&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/206753">@OtisMclaughlin</a>&nbsp;, Welcome to the forum!</P><P>There is a bit to unpack here, but I'll keep it concise. This announcement was originally announced on Oct 2021, and <STRONG>affects endpoints which meet the following criteria</STRONG>:</P><UL><LI><P><SPAN>Cortex XDR agent <SPAN class="">version</SPAN> 7.2.1 - 7.3.3 and 7.4.0</SPAN></P></LI><LI><P><SPAN><SPAN class="">Windows</SPAN> <SPAN class="">10</SPAN> <SPAN class="">version</SPAN> 20H2 (build 19042) and above</SPAN></P></LI><LI><P><A href="https://ark.intel.com/content/www/us/en/ark/products/codename/88759/products-formerly-tiger-lake.html" target="_blank" rel="noopener"><SPAN>Intel Tiger Lake</SPAN></A><SPAN> or</SPAN><A href="https://www.amd.com/en/technologies/zen-core-3" target="_blank" rel="noopener"> <SPAN>AMD Zen-3</SPAN></A><SPAN> processors</SPAN></P></LI></UL><P>&nbsp;</P><P><STRONG>To answer your question</STRONG>: the sub-components listed in the "Impact" section will be disabled due to incompatibility. What it means is: the affected endpoints won't be secured against any attacks that are protected by those sub-components, one of them being BTP. You can read up on BTP's <A href="https://docs.paloaltonetworks.com/cortex/cortex-xdr/cortex-xdr-pro-admin/endpoint-security/endpoint-security-concepts/endpoint-protection-capabilities.html" target="_self">here</A>.</P><P>&nbsp;</P><P><STRONG>What you can do</STRONG> is to <SPAN><SPAN class="">upgrade</SPAN> affected systems to </SPAN><SPAN>Cortex XDR agent 7.3.4 or higher, 7.4.1 or higher, or 7.5.0 and higher, and 7.6.0 and higher.</SPAN></P><P>&nbsp;</P><P><SPAN>You should also note that the affected versions (v7.2, v7.3 and 7.4) are nearing <A href="https://www.paloaltonetworks.com/services/support/end-of-life-announcements/end-of-life-summary" target="_self">end-of-life</A>, so you should review your endpoints and upgrade them inline with your organizational upgrade strategy.</SPAN></P> Thu, 20 Jan 2022 03:59:28 GMT bbarmanroy 2022-01-20T03:59:28Z https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/cortex/m-p/459563#M1464 <P>Hello</P><P>We would need to know how this announced incompatibility affects our case and it is necessary to take some action. On the other hand, we do not quite understand what impact the following paragraph has on us: While only Windows 10 version 21H2 and higher are incompatible, the Cortex XDR agent will disable the affected security engine in Windows 10 version 20H2, since it must be disabled prior to the upgrade to Windows 10 version 21H2.</P><P>What "affected security engine" do you mean? From the "Impact" section, how does it affect us if the BTP module is disabled? Can anyone respond to out question</P> Wed, 19 Jan 2022 16:03:23 GMT https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/cortex/m-p/459563#M1464 OtisMclaughlin 2022-01-19T16:03:23Z https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/cortex/m-p/459704#M1465 <P>Hi&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/206753">@OtisMclaughlin</a>&nbsp;, Welcome to the forum!</P><P>There is a bit to unpack here, but I'll keep it concise. This announcement was originally announced on Oct 2021, and <STRONG>affects endpoints which meet the following criteria</STRONG>:</P><UL><LI><P><SPAN>Cortex XDR agent <SPAN class="">version</SPAN> 7.2.1 - 7.3.3 and 7.4.0</SPAN></P></LI><LI><P><SPAN><SPAN class="">Windows</SPAN> <SPAN class="">10</SPAN> <SPAN class="">version</SPAN> 20H2 (build 19042) and above</SPAN></P></LI><LI><P><A href="https://ark.intel.com/content/www/us/en/ark/products/codename/88759/products-formerly-tiger-lake.html" target="_blank" rel="noopener"><SPAN>Intel Tiger Lake</SPAN></A><SPAN> or</SPAN><A href="https://www.amd.com/en/technologies/zen-core-3" target="_blank" rel="noopener"> <SPAN>AMD Zen-3</SPAN></A><SPAN> processors</SPAN></P></LI></UL><P>&nbsp;</P><P><STRONG>To answer your question</STRONG>: the sub-components listed in the "Impact" section will be disabled due to incompatibility. What it means is: the affected endpoints won't be secured against any attacks that are protected by those sub-components, one of them being BTP. You can read up on BTP's <A href="https://docs.paloaltonetworks.com/cortex/cortex-xdr/cortex-xdr-pro-admin/endpoint-security/endpoint-security-concepts/endpoint-protection-capabilities.html" target="_self">here</A>.</P><P>&nbsp;</P><P><STRONG>What you can do</STRONG> is to <SPAN><SPAN class="">upgrade</SPAN> affected systems to </SPAN><SPAN>Cortex XDR agent 7.3.4 or higher, 7.4.1 or higher, or 7.5.0 and higher, and 7.6.0 and higher.</SPAN></P><P>&nbsp;</P><P><SPAN>You should also note that the affected versions (v7.2, v7.3 and 7.4) are nearing <A href="https://www.paloaltonetworks.com/services/support/end-of-life-announcements/end-of-life-summary" target="_self">end-of-life</A>, so you should review your endpoints and upgrade them inline with your organizational upgrade strategy.</SPAN></P> Thu, 20 Jan 2022 03:59:28 GMT https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/cortex/m-p/459704#M1465 bbarmanroy 2022-01-20T03:59:28Z