Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.
We have several machines that are now reporting "Partially Protected" when we enabled Certificate Enforcement on them.
First they started to show "Local-Store fallback used" in audit logs (informational severity), now we see "Failed to enable cert
...
Is it possible to create a Vulnerability Assessment base on endpoint with endpoint name, amount of CVE’s, Severity, Severity Score, Last reported Timestamp and Endpoint Type.
Hello,
I just installer a 8.2 XDR agent to a linux server
"/opt/traps/bin/cytool startup enable all" returns
Process name Startup status
pmd Enabled
Failed to get unit file state for traps_spmd.service: No such file or directory
spmd Disabled
Failed to ge
Hello,
I am checking if it is possible, to monitor from cortex when BitLocker is enabled on the computer, via a BIOC?
Best regards.
Hi,
Please may i know if anyone may have the issue i encounter since early May 2024?
1. Delete a folder (100+ files) from specific endpoint (right click mouse and select delete)
2. From Cortex XDR Query Builder - File Query and Select Action = Delet
...
Hi,
I'm trying to use Query Builder but unable to get any results. see also attached screenshot.
But when I perform a XQL search with query "dataset = endpoints" it gives me results.
What should be done so I can use the Query Builder?
thanks
Hi everyone,
I have a few questions:
I installed the Cortex app on my iPhone and allowed all the required permissions, but every time I close the app (swipe up), it stops working. The Cortex app is terminated, and the agent is not running. Is there
Hi all,
We've started using Cortex XDR this year, and I currently see some limitations on the reporting and dashboard module. We're using tags to keep track of our endpoint, and we are looking to create reports based on tags.
Basic example, I want a
I have an mdm on my corporate smartphones, how do I add it to the hip object so that users can only access the internal network if they have the mdm installed?
With the announcement of certificate enforcement for Cortex XDR 8.3, I haven't seen any guidance on how to install or where to download the certificates that XDR agents will be using. The lack of information concerns me because I don't want to enable
...
Hello,
I've been using python script to get all endpoints /public_api/v1/endpoints/get_endpoints
(https://docs-cortex.paloaltonetworks.com/r/Cortex-XDR-REST-API/Get-all-Endpoints).
Recently there was another business requirement to get OS type of
...
Bonjour, je suis confronté à un pb de désinstallation de Cortex xdr 7.9.0.20664 , devant migrer en 8.3.1, j'ai lancé le XdrAgentCleaner 7.9.0.17288, a demandé le password de désinstallation, est bien passé puis a demandé de rebooter. J'ai fait la mêm
...
hi
we integrated o365 API with cortex we have concern
what it will do it will do anything?
what is the use compliance mail it block spam or malicious attachment
I have tried using the below XQL query to identify the domains accessed and tried to test it using my own system but somehow I am not getting all the results. For eg : when I tried common domain names like "google.com", "reddit.com". It worked and fe
...| Subject | Likes |
|---|---|
| 2 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like | |
| 1 Like |
