Hello
I see that OSX 12.X Monterey is currently not supported by any XDR agents. Is there an indication when this may be likely in the road map?
I have several users eager to update
We're in a situation where HQ has moved to Cortex XDR, at the satellite facilities, there are PC/Laptops that never touches HQ network and are often standalone systems or is on a competely separate domain and those domain is to never communicate with
...
I am having issues with an endpoint connecting to the Cortex XDR dashboard,
The Cortex XDR console from within the OS is showing as 'Enabled' however it is disconnected from the endpoint administrator console.
I have attempted restart the services usi
...
Hi,
We received a PA notification about Microsoft Windows 10 version 21H2 running on specific hardware architectures are incompatible with a security engine in Cortex XDR agent 7.0.0 – 7.4.0.
In our case we have the following scenario:
- Cortex agent
Hi Expert,
I wanna ask about disk encryption, I already follow guide from Palo for create policy disk encryption.
But after I checked my volume device still same, and status is Not Compliant
please give me advice for this
Hi all, I was wondering - can i block execution of files based on bioc\ioc and or file name?
As in, not just raise an alert(which i already have) but also actively block the file execution
We use a vulnerability scanner internally to test all endpoints for any known vulnerabilities or leaked credentials.
Cortex has been alerting to this, but since we know this is intentional traffic, is there a way to ignore certain authentication requ
...
Hi all,
I'm trying to run checks on my mac, that has a cortex xdr agent, trying to see how the blocking & quarantine functions before setting the policy to all endpoint in my organization.
However, EICAR files, and the test file that palo alto provides
...
Hello everybody.
I want to know if we can initiate a live terminal session over Broker VM ( our agents dont have internet access so they use Broker VM ).
1) In documentation Palo Alto say that network requirements for Broker VM are these:
- br-<X
...
Hello LiveCommunity, I wondered if any others are seeing a very high number of recently created (in the last few hours) "Memory Corruption Exploit" alerts in Cortex XDR?
Beginning around 1015 Pacific this morning (11 Oct) thru as recent at 1518 Pacifi
Hello everybody,
We want to integrate our Active Directory to Cortex XDR via Cloud Identity Engine. But there must be proxy between Cloud Identity Engine and Cortex servers. We setup a lab environment for test purpose ( simply forwarded web traffic v
...
Hello people ,
I am trying to figure out real difference between XDR and XSOAR.
XDR is far more intelligent than. SIEM . So this means SIEM is killed ?
XDR can also perform incident response , so what is the real value of SOAR?
Our organization has started using Azure AD and Intune for managing PCs, and the enrollment include the deployment of Cortex XDR client. So far, we've had no issues during our (slow but surely) transition.
But last week I encountered a strange problem
We recently upgraded our XDR Clients from 7.4.2 to 7.5.0. Since the upgrade a lot of our Windows Servers seem to be using a lot more memory that what I recall other client versions using. For example, older versions where like 200-400MB of usage but
...
Hi community,
Can I check is there any one create a alert if a user copied more than a certain number of files into a USB drive?
Thank You, Cheers!
