Enhanced Security Measures in Place: To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.
Hello, Is there any possibility that the customer may utilize Cortex XDR agent in two domains, taking into account that first one has tenant id, the other doesn't?
Thank you in advance.
Hello Guys!
Just wanted a clarification that once the Cortex XDR agent service : cyserver.exe get stopped due to any reason.
1.How the system service restarts again ?
2. How many or frequency of heartbeats does cortex xdr agent send to Cortex XDR
...
I need to know the difference between both actions seen in alerts and if it's related to profiles configuratios(Block, Report Disabled). If it's set to Report, the action will appear like Detected (Reported) because it could be blocked?
Hello,
After using Cortex XDR on Linux RHEL for several months, we've observed that the support turnaround time for new RHEL kernels (from RHEL 6 to 9) is highly unpredictable. This can range anywhere from 2 to 10 weeks. Without supported ker
Hi Team,
Am unable to add multiple folders under Exception configuration page. I have 20+ folders which i need to exclude in Cortex XDR, i went to Exception Configuration-->Disable Prevention policy-->Add Rule. I have to do this each every time for e
...
Hi
Can i remove XDR Agent from PC and i don*t have supervisor password for disable antitampering...
Endpoint are not showing in XDR Console...
please help, i have problems with cca 200pc
best regards...
Hi,
I've just noticed this recently. A while ago when I added .csv file to a report, it was formatted with coma between columns. Now it is using a tab what cusses export to Excel more difficult. Is any setting which can be use to change it back?
Hello dear community,
is this now the long awaited feature, which gives us the possibility to have a CVE-scoring on Windows applications?
BR
Rob
Dear All,
Do you know why the content updated, cannot open the task manager?
Cortex XDR
"ruleId": "bioc.masqueraded_process_msft",
"fileIdx": 0,
"modules": [],
"profile": "Malware",
"sockets"
What is the difference between Legacy agent exception and Disable prevention rules?
This was asked in another discussion but the answer does not resolve the question asked (https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/exception-and-e
...
3.10 activated in our tenant yesterday and along with that, our endpoints started upgrading to 8.3 (we are one release behind the latest).
This morning we were deluged with calls about unresponsive endpoints.
We stopped the automatic endpoint upgra
...
I'm trying to run a query to get a count of how many times combinations of the values in "initiated_by" and "initiator_path" occur for an alert in the alerts dataset.
For example:
binary1.exe c:\temp\blah 6
binary2.exe c:\temp\blahblah 12
I'm trying to
Hello,
I do represent a company called Arx One. We have been publishing a backup software suite (backup agent, agent management console) for more than 15 years now and those software are installed on our customers' workstations, servers or NAS (Window
Curious to know, of all the modules offered in Cortex XDR, exactly which ones are used during Pre-execution and Post-execution phases?
reaper
on:
NGFW User-ID and Terminal Server (TS) Agent Self-Signed Certificates expiration
