Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
About Cortex XDR Discussions

Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.

Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.

Discussions

BrokerVM HA cluster

Hi team,

 

I created cluster from scratch and added here 2 brokervm, then for new cluster I assigned dedicated IP address and FQDN, then in local DNS is created A record using ha cluster FQDN and dedicated IP address. Is ti true way? because I tried

...

Sadig by L0 Member
  • 801 Views
  • 3 replies
  • 0 Likes

Resolved! Initiate Script on Endpoint via API call

Hi Everyone,

 

I've been running Powershell scripts on my endpoints from Action Center > Run Endpoint Script > Execute Commands in the XDR interface. It works well, however I need to specify a manual query to target the endpoints I want each time i.e

...

Cortex Screen Shot.jpg

Cortex XDR unable to uninstall

In Win 10 Pro 22H2 19045.3930, Cortex XDR agent unable to uninstall or upgrade in one user pc. Agent setup unable to find in control panel installed applications. Present agent version 8.2.0.46438. Worked on uninstalling from action response, endpoin

...

Resolved! Managed Digital Signers Block List

Hello All-

 

I am hoping this is a quick question as I did not find this in XDR documentation.  It is my understanding that Palo manages a "trusted signers" list.  Is there a way to leverage a similar list to automatically block the use/execution of

...

Resolved! Impact on licences expiration #Cortex XDR

Hello

My Cortex XDR licences expire in a few weeks

I can't find the exact impact, I suppose that the new malware signature won't be updated but :

- Will I be able to handle to connect to the console, to handle the agent

- Will the agent still work?

 

...

XDR Collectors

Hello, 

I have prepared XDR collector agent for Windows. I have installed it on two of my windows servers. But unfortunately, it does not show up on Administration tab where i am supposed to see all installed collectors. I do not see my two XDR colle

...

Resolved! Ingest DHCP logs using XDR collector

Hi,

 

I am having issues with ingesting DHCP log from our DCs. We are using the XDR Collector app. I suspect that the issue is with the filebeat.yml file but cannot figure out what the problem is. I have tried and followed the guide below and copy-pa

...

  • 2080 Posts
  • 82 Subscriptions
Top Solution Authors
Top Liked Authors