CIE integration

In case of hybrid environment,Can we send data to CIE instance from both Azure AD as well as on-prem AD as it supports both.

Or it is enough if we send data only from on-prem AD alone.

XDR Shadow Copy use case

Could someone please share any related documents or use cases for the Shadow Copy in XDR? We have gone through the Administrative guide, but we were unable to find many details about how it works. Additionally, we would like to know how we can backup

E-Mail Notifications or Alert triggering only im specific time ranges

Hello dear community, 

we need to trigger alerts only in specific time ranges. Like only at weekend or weekdays from 5 in the evening until 6 in the morning. 

In the working hours it is possible admins with the identity of the user are triggering a

Dynamic endpoint groups using OUs stored in Azure AD

Hi all,

My question is if there is any way to synchronize the OUs stored in an Azure AD into the cortex XDR pro to then create dynamic Endpoint Groups using that OUs. The synchronization between Cortex and Azure is successfull but I can't see any OU.

BrokerVM FQDN configuration impacts?

Hello, 

Regarding BrokerVM FQDN configuration the docs & BrokerVM  configuration page states:
"The Broker VM FQDN settings affect the WEC and Agent Installer and Content Caching."

How does it exactly impact the Agent Installer?

Cortex XDR 

Windows 10 , 2 Clients won't start from Testgroup of 5 Clients after Update Cortex XDR 8.3.1 to 8.4.1

Hi,

I have arequest. We were informed to upgrade to Cortex XDR 8.4.1.

In our Testgroup of 5 Clients, 2 Clients aren't working anymore.

Windows 10 , 2 Clients won't start after Update Cortex XDR 8.3.1 to 8.4.1

3 Clients with Windowss 10 are still

Change Management Server for offline agents

Dear XDR gurus,

We want to change the management server from an old tenant to a new tenant, it is simple for the agents are online by selecting the agent, Alt+Right click and select change management server.

However, it is possible  a way to change m

Cortex Xdr - Agent Settings - Network Location Configuration

Hello,

I am testing XDR Agent Settings.

I am trying to setup the Network Location Configuration option.

The main issue I have is that I would like to enter two DNS servers.

In DNS Name, I can do this:

server1.domain.com, server2.domain.com
Thi

Cytool stops scanning and times out

Hello everyone,

I'm trying to create a gold image in an AWS AppsStream 2.0 environment. I'm following the steps listed here:

https://docs-cortex.paloaltonetworks.com/r/Cortex-XDR/8.1/Cortex-XDR-Agent-Administrator-Guide/Cortex-XDR-Agent-for-Virtual-E

API BLOCK LIST

Hello,

By doing or achieving different automations I have managed to add hashes to the block list in the action center section via API, but as in this console I see that it is blocked with 15,000 entries, let me explain when adding 15,000 hashes I un

Unable to parse the time stamp

I have tried to create a new field with an existing string field (createdDate), which is already in an ISO 8601 format. unable to parse it

sample value of feild createdDate=2019-08-29T10:10:26.608Z

Here below the query I have used

| alter filedate

Unable to parse the time stamp

I have trying to create a new field with existing string field (cretedDate) which is already in a ISO 8601 format but. unable to parse it

sample value of feild createdDate=2019-08-29T10:10:26.608Z

here below the query i have used


| alter filedate