E token Cortex XDR blocking

MEERSHAH — Wed, 18 Mar 2026 05:27:39 GMT

In our Organization E-Token is widely used by different departments/branches for specified purpose .However our cortex XDR is blocking the same under CD ROM category . How to allow the same and where to allow.

Re: E token Cortex XDR blocking

Vinothkumar_SBA — Thu, 19 Mar 2026 12:18:33 GMT

Hello @MEERSHAH

Allowing E-Tokens Blocked as CD-ROMs in Cortex XDR

To allow E-Tokens that are being blocked under the CD-ROM category in Cortex XDR, create a Device Control exception based on the device’s Vendor ID (VID) and Product ID (PID). Configure this in the Cortex XDR Management Console under Policy > Device Exceptions by adding a rule to exempt the specific token IDs.

Steps to Allow E-Token

1. Identify the Token

- Plug in the E-Token and find its VID/PID from the blocked alert logs in Cortex XDR or via Device Manager on the endpoint.

2. Navigate to Policies

- In the Cortex XDR Console, go to:
- Extensions Policy → Profile -> Create Device Exceptions .

3. Create Exception

- Add a new rule to Allow the specific device using its Vendor/Product ID.

- Set the permission to Read/Write or Allow to ensure the token functions correctly.

4. Assign Policy

- Apply the updated policy to the relevant endpoint groups (e.g., specific departments or branches using the token).

Note:

If the token is being blocked by a Malware/BIOC profile rather than Device Control, you may also need to add the signer of the token software to the allow list within the malware profile.

Please help out other users and “Accept as Solution” if a post helps solve your problem !

topic Re: E token Cortex XDR blocking in Cortex XDR Discussions

E token Cortex XDR blocking

Re: E token Cortex XDR blocking

Allowing E-Tokens Blocked as CD-ROMs in Cortex XDR

Steps to Allow E-Token