Hi Team,
Can someone please let us know the XDR and Broker VM architecture?
Regards,
SHahwaz
Hi all, I have an issue that started popping up with an agent installation - newly installed agents throw out a 307 error. the package is present on the xdr management console, and we are beneath the license limit.
What can be the issue here?
Hi, I need help, I have Cortex XDR policy to allow scans on the endpoint, however users are unable to start the scans, the option does not appear
I can only scan, with cmd as administrator (cytool scan start) , in the GUI I can't even do it as admini
...
Hello,
I am currently trying to create a five depth process tree to perform long tail analysis on it.
The query in KQL language can be found here
The moment I perform the first join statement everything breaks
Here is the almost complete code but you ca
Hi,
After upgrading Cortex XDR agent to version 8.2.1.47908 , one of our servers suffer massive memory usage by multiple Cortex XDR Local Analysis Worker processes (8x2GB=16GB RAM). After restarting the Cortex agent, memory is freed for a while, but
...
Hi,
Does Cortex malware scans e-mails inside Outlook mailbox and if not, is it possible to do this?
Hi team,
I created cluster from scratch and added here 2 brokervm, then for new cluster I assigned dedicated IP address and FQDN, then in local DNS is created A record using ha cluster FQDN and dedicated IP address. Is ti true way? because I tried
...
Hi family ,
I want to update the windows version on some endpoints through command line or powershell script, which i can access by cortex xdr live terminal.
Is it possible?
Cortex XDR
Hi Everyone,
I've been running Powershell scripts on my endpoints from Action Center > Run Endpoint Script > Execute Commands in the XDR interface. It works well, however I need to specify a manual query to target the endpoints I want each time i.e
...
Hi.
Does anyone know if there is a command line to set a proxy to an already installed version of Cortex XDR?
I know the proxy can be set using the command line: Cortex_Installer.msi proxy_list=”<proxy>:<port>”
That being said, I didn’t find any way
...
Hello,
Greetings
Can anyone confirm why does status indicator of Broker VM's Local agent setting keeps fluctuating. It keeps changing between "Connected to Connection Failed" also showing inaccessible URLS that are already whitelisted. Also the a
...
In Win 10 Pro 22H2 19045.3930, Cortex XDR agent unable to uninstall or upgrade in one user pc. Agent setup unable to find in control panel installed applications. Present agent version 8.2.0.46438. Worked on uninstalling from action response, endpoin
...
Hello All-
I am hoping this is a quick question as I did not find this in XDR documentation. It is my understanding that Palo manages a "trusted signers" list. Is there a way to leverage a similar list to automatically block the use/execution of
...
Hello
My Cortex XDR licences expire in a few weeks
I can't find the exact impact, I suppose that the new malware signature won't be updated but :
- Will I be able to handle to connect to the console, to handle the agent
- Will the agent still work?
...
Hello dear community,
is there a way to setup bioc rules only for the scope weekend? I tried a little bit, but couldn't get it done.
Thank you
BR
Rob
reaper
on:
NGFW User-ID and Terminal Server (TS) Agent Self-Signed Certificates expiration
