Deploy Cortex Agent via Intune

Has anyone managed to successfully deployed the Windows Cortex agent via Intune?

I have an app configured and deployed, but it's not working as expected. Likely because of the App protection policy in Cortex. I have version checking in the App turn

CORTEX XDR - Endpoint delete

Good morning dears,

I want your opinion, I have devices disconnected for a long time (3 months) so I am planning to delete from the console and recover the licenses.

My question is whether the device will have problems uninstalling when it is reconne

Risk associated with Profile

Masquerading - 4203898100

We're getting this alert whenever we're trying to install filezilla.exe or Opening Filezilla.exe. We're using the same installation file like before and also tried with the latest versions. But still it's getting blocked by XDR. Any idea why is that

Disable Protection Rule for Remote Initiated Behavioral Threat

We are creating a custom service to handle automatically checking and updating programs (similar to PDQ Deploy, or an RMM tool).

We've signed the the created service and tried several ways to disable it from being blocked. The problem is, we are very

Error code:307 on MAC, Cortex Agent 8.2.1

I get a "Cortex XDR Policy update failed!" message
Error code: 307

This happens on a MAC (updated).

I'm also unable to uninstall the agent.

I was able to do it once, then installed it again, and now my tennant's global uninstall password doesn't w

Data Lake Activation Button

Hello, 

I have Cortex Pro per GB license of 165 GB. I have also bought Cortex Data Lake. When I go to Support Palo Alto--> Products--> Assets tab, I can see Data Lake and its Auth Code. But when I go to https://apps.paloaltonetworks.com/apps , I se

Cortex Visio Stencils

I am making customer diagrams for Cortex XDR, XSOAR, and the data lake. I can easily find hardware visio stencils, but nothing for Cortex. Does anyone know where I can find Visio stencils? This link has nothing: https://www.paloaltonetworks.com/compa

Cortex XDR Pro - Difference between two broker vms set at one agent and a broker vm cluster

Hello dear community, 

can you describe the difference between 2 broker vms set up at one agent and a broker vm cluster? 

Why should we take a cluster and do not set 2 broker vms at one agent?

BR

Rob

XQL Query Assistance

Hi all,

I'm new to Cortex and creating XQL queries. I was looking for a way to detect a brute force attack (failed logins followed by a successful login). Are there any good resources available online or can someone help me get this query built?

Th