https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/agent-not-communicating/m-p/577231#M6059 <P>Hello, If I ask, can you please answer to this question?&nbsp;</P> <P>The certificate used for decryption was installed as a trusted root CA certificate to ensure communication between the Cortex XDR Agent and Cortex XDR Management Console. What action needs to be taken if the administrator determines the Cortex XDR Agents are not communicating with the Cortex XDR Management Console?</P> <P>a. reinstall the root CA certificate&nbsp;</P> <P>b. enable SSL decryption</P> <P>c. disable SSL decryption&nbsp;</P> <P>d. add paloaltonetworks.com to the SSL Decryption Exclusion list</P> Wed, 14 Feb 2024 07:58:21 GMT JahidAliyev 2024-02-14T07:58:21Z https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/agent-not-communicating/m-p/577231#M6059 <P>Hello, If I ask, can you please answer to this question?&nbsp;</P> <P>The certificate used for decryption was installed as a trusted root CA certificate to ensure communication between the Cortex XDR Agent and Cortex XDR Management Console. What action needs to be taken if the administrator determines the Cortex XDR Agents are not communicating with the Cortex XDR Management Console?</P> <P>a. reinstall the root CA certificate&nbsp;</P> <P>b. enable SSL decryption</P> <P>c. disable SSL decryption&nbsp;</P> <P>d. add paloaltonetworks.com to the SSL Decryption Exclusion list</P> Wed, 14 Feb 2024 07:58:21 GMT https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/agent-not-communicating/m-p/577231#M6059 JahidAliyev 2024-02-14T07:58:21Z https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/agent-not-communicating/m-p/577338#M6072 <P>Hello&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/274228">@JahidAliyev</a>&nbsp;</P> <P>&nbsp;</P> <P>Thanks for reaching out on LiveCommunity!</P> <P>If you are using SSL decryption on your firewalls then please ensure to exclude below URLs from SSL decryption.</P> <TABLE> <TBODY> <TR> <TD> <P><SPAN>FQDN 1</SPAN></P> </TD> <TD rowspan="2"> <P><SPAN>Cortex Services</SPAN></P> </TD> <TD> <P><SPAN>*.traps.paloaltonetworks.com</SPAN></P> </TD> </TR> <TR> <TD> <P><SPAN>FQDN 2</SPAN></P> </TD> <TD> <P><SPAN>*.xdr.</SPAN><SPAN>&lt;region&gt;.</SPAN><SPAN>paloaltonetworks.com</SPAN></P> </TD> </TR> <TR> <TD> <P><SPAN>FQDN 3</SPAN></P> </TD> <TD> <P><SPAN>Cloud Identity Engine Agent</SPAN></P> </TD> <TD> <P><SPAN>agent-directory-sync.</SPAN><SPAN>&lt;region&gt;.</SPAN><SPAN>paloaltonetworks.com(</SPAN><STRONG>FOR US/UK/EU/SG</STRONG><SPAN>)</SPAN></P> <P><SPAN>agent-directory-sync.</SPAN><SPAN>&lt;region&gt;.apps.</SPAN><SPAN>paloaltonetworks.com(</SPAN><STRONG>FOR CA/JP/AU/DE/GOV/IN</STRONG><SPAN>)</SPAN></P> </TD> </TR> </TBODY> </TABLE> <P>&nbsp;</P> <P>Please make sure to replace &lt;region&gt; with the actual region of your tenant.</P> <P>Also to establish communication between agent and XDR tenant please make sure the list of FQDNs, IPs, ports or App-ids that are mentioned in below document are whitelisted.</P> <P><A href="https://docs-cortex.paloaltonetworks.com/r/Cortex-XDR/Cortex-XDR-Pro-Administrator-Guide/Resources-Required-to-Enable-Access" target="_blank">https://docs-cortex.paloaltonetworks.com/r/Cortex-XDR/Cortex-XDR-Pro-Administrator-Guide/Resources-Required-to-Enable-Access</A></P> <P>&nbsp;</P> <P>Regarding updation of Trusted CA certificate for Broker VM please follow below link. You will find necessary details under "Configure the Broker VM" section.</P> <P><A href="https://docs-cortex.paloaltonetworks.com/r/Cortex-XDR/Cortex-XDR-Pro-Administrator-Guide/Configure-the-Broker-VM" target="_blank">https://docs-cortex.paloaltonetworks.com/r/Cortex-XDR/Cortex-XDR-Pro-Administrator-Guide/Configure-the-Broker-VM</A></P> <P>&nbsp;</P> <P>If you still face connectivity problem please open a TAC case.</P> <P>&nbsp;</P> <P>Please c<SPAN>lick&nbsp;</SPAN><STRONG>Accept as Solution</STRONG><SPAN>&nbsp;to acknowledge that the answer to your question has been provided.</SPAN></P> Thu, 15 Feb 2024 14:00:26 GMT https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/agent-not-communicating/m-p/577338#M6072 nsinghvirk 2024-02-15T14:00:26Z