Enhanced Security Measures in Place: To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.
my customer has a service that requires to be excluded from Cortex XDR agent activities. he gave me some processes and file extensions and paths. where can I do this on Cortex console?
I use MacOs and Cortex XDR, and I wanna uninstall the Cortex XDR.
Cortex XDR Uninstaller.app said a following sentence:
[ Enter agent protection password ( set by the administrator ) ]
I didn't set the agent protection password.
How can I uninstall the
...
Hello,
I have just downloaded and installed on 10 x machines for testing Cortex XDR Pro agent version 7.1.2
Been "hunting" about Paloalto portals for release notes and found nothing as yet relating to this latest agent version, have i missed them?
Ca
...
Hi Community,
Does the wildfire test file generate a alert/incident which can be seen XRD console ?
I have a XDR agent connected to cloud. The wildfire test sample in prevented and i can see it in events of XDR agent. I cannot see this in XDR console
...
Hi Team,
We have Host firewall profile enabled to block access to some of the IP address.How can we check these logs, if any users tried to access these blocked ip addresses and at what time they tried so. please advise.
Hi,
Before in Traps Management Services, I was able to report a false positive hash to WildFire for revision.
How can I do that in Cortex ?
Thank you.
When XDR license is upgraded from XDR Prevent to XDR Pro per license, are the endpoints migrated from old console to new console? If yes, how much time does it take?
I have been having problems with some users, they report that their computer takes 30 to 40 minutes to start when they have the cortex agent installed and when they uninstall it it starts normally. It is worth mentioning that the agents are currently
...
Dear community,
I hope you all stay safe and doing great.
I noticed that per each 5-minutes check-in the cortex XDR agents they will get 22MB back from the cloud.
I think this is considerable amount of data if there´s no policy/content update to be se
...
Hi Team,
Our cyber security department has shared few hashes and asked to check the these hashes verdict? How to check a hash is malware or benign? how to perform this on cortex xdr portal?
Sending some instructions to another team and want to verify I send them the proper info. In regards to dc-<xdr-tenant>.traps.paloaltonetworks.com, where do I find what my tenant name is?
I am trying to get a live memory dump from the Endpoints with Cortex XDR agents installed. through a live terminal and the the file explorer, we are limited to 200 MB downloads from the remote host. Is there a way to expand this file size limit or ho
...
Hi Team,
How to find cortex xdr on-demand scan report and also how to check what was the duration of scan time?
I have installed Linux agent version 7.1.0.44806 on Ubuntu 16.04 and the agent is not visable under Endpoint Administration. Here is the output of cytool
└──╼ $sudo /opt/traps//bin/cytool startup query
Process name Startup status
authorized Enabled
pmd E
reaper
on:
NGFW User-ID and Terminal Server (TS) Agent Self-Signed Certificates expiration
| User | Likes Count |
|---|---|
| 2 | |
| 2 | |
| 2 | |
| 2 | |
| 1 |
