Laptops dynamic group

I am looking for an efficient way to create a dynamic group for laptops only in the XDR console. So far, my only idea is to add a laptop tag during installation and then group by the tag. Is there an automated way to have XDR report the portable plat

How to configure rsyslog server to receive logs from Cortex XDR via TCP+SSL

Hi,

I am having issue with Cortex Log forwarding to syslog server where from Cortex XDR encountered error(can refer in the attachment named Cortex XDR error) as below.

Test failed: Connection timed out

I have check many times with our firewall

Development Pipeline

dear,

I have an openshift ci/cd and I wanted when the image was formed, the cortex would be called to check, is it possible?

Cortex XDR False Positive Report

Hello everyone,

We develop some applications and our customer told us when they install the application, it gives a malicious warning for a sub installer "gcad_local.exe". Is it possible to submit the file to Cortex XDR and add it to whitelist in som

Telemetry on visited web pages

Hello everyone,
My employer is going to install Cortex on the employees' PCs.
Is this software able to monitor the time spent on the internet and the websites visited please?
Thank you in advance.

SSH access to Broker VM impossible/failed

Hi everyone,
I'm trying to access my VM Broker with SSH in admin mode but without success.

In the Broker configuration, I use the command :
ssh -i [/path/to/private.key] admin@[broker_vm_address] then I connect to the Broker machine without any proble

Vuln drivers - scan

Hi,

Anyone know if is possible to retrieve the devices with drivers with vulnerabilities?
I've a lot devices with Cortex XDR and my objective is force IT guys, update vulnerable drivers etc.

XDR API for Policy Management

Is there an API in XDR for Policy Management?

I'm trying to get the list of policies, profiles and their rules.

There is /public_api/v1/endpoints/get_policy (Get Policy • Cortex XDR REST API • Reader • Palo Alto Networks documentation portal)

Howeve

Cortex XDR Agent Incompatibility with Upcoming Windows 11 24H2 and Windows Server 2025 Releases

Hi,

Does anyone have more information about the " Cortex XDR Agent Incompatibility with Upcoming Windows 11 24H2 and Windows Server 2025 Releases"???

I received an email today alerting me about this issue, and I’m wondering: does anyone know the re

Cortex XDR Agent - Connection Lost on Endpoints

Hi Team,

We are facing connection loss issues with some of the endpoints. When we try to reconnect, it fails. We also attempted to retrieve the agent logs, but that also failed. Could you please let us know if there is a possible path to retrieve t

Blocking Bluetooth

Hello, 

I want to block blueotooth activities on endpoints in Cortex XDR. Is there any way or rule to do this? If yes, can you write rule?

Thanks in advance. 

Best way to restrict software by digital signer

hey guys, i'm not clear how to block the running (installing) of certain software using XDR by restricting by digital signer. 

Is it possible to cerate a BIOC and apply to a restricted profile? If not, what would you say is the best way to go about th