This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
About Cortex XDR Discussions

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.

Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.

Discussions

Start a conversation

Welcome to the Cortex XDR Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4397 Views
  • 0 replies
  • 3 Likes

Resolved! Cortex XDR version 8 Autoupgrade behaviour on Server 2008 R2

Hi, We're using the autoupgrade feature in the Agent Installation profile at the moment to upgrade our agents to the latest 7.9 client. We're looking at moving up to version 8 shortly, I've upgraded a group of test machines and all looks good. We've still got a couple of old 2008 R2 servers that will be getting decommissioned shortly but are...

Cortex XDR disabling itself

Hello, in our environment there are users across multiple departments reporting that Cortex XDR RTP periodically stops itself due to an "adaptive policy", causing them to fail hipchecks and have their network access restricted. These users are primarily on mac devices and are on version 7.9.0. Is anyone else seeing this type of activity?

cwoody by L0 Member
  • 2739 Views
  • 2 replies
  • 0 Likes

BIOC Question

Hello, Everyone! I would like to know how this can be implemented - I want to block suspicious remote control applications (BIOC) Cortex XDR. I want a reply from the Palo Alto official. Thanks.

Error when deploying Cortex XDR with GPO

Hello everyone, I try to deploy Cortex XDR on all my computers with the help of GPO.For x64 OS, it goes pretty well, for x86 OS I have an abnormal behavior, on several PCs, it does not install. I have attached some logs, do you have an idea? I'm looking forward to hearing from you.

BBoyer by L0 Member
  • 2514 Views
  • 1 replies
  • 0 Likes

Cortex XDR agent installation suggestions for a Proxmox host and its LXC containers

We use a cluster of Proxmox servers which host a number of LXC containers and KVM/QEMU VMs. Our central IT department requires use to install the Cortex XDR agent on all the devices. I have a Debian Bookworm server with the cortex agent installed which only consumes between 0.0-0.3% CPU. On the Proxmox servers, this CPU usage is about 140%. Maki...

Resolved! Ingesting Syslog to Private/Internal Syslog

Hello, My organization utilizes graylog, and we host it on prem. Is there a way to route/tunnel the XDR tenant into our internal network? I am aware of the BrokerVM, but I do not know if that plays a role. I know the BrokerVM has a syslog app, but that is only available for the "Cortex XDR Pro per TB" where as we utilize "Cortex XDR Pro per En...

Cortex Domain controllers exceptions

Hi Team, We are having replication issues across the domain controllers and Microsoft is suspecting its an issue with Cortex and they want the the below files to be created as an exceptions across all our domain controllers. To rule out Cortex issue we thought we will put this DC's in report mode instead of Block, as it is a risk of keeping ...

  • 2611 Posts
  • 98 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks