Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.
We were monitoring the XDR Agent Audit logs and found out a lot of agents have this alert Quota Exceeded: "XDR agent quota exceeded on ******."
Can anyone explain this?
Hello,
Please help by providing XDR configuration baseline document.
We require doument for review of XDR.
Regards,
Shashank
Hello Team,
1. How frequently CVE's are added to the XDR Console?
2. How PaloAlto addresses Patch Tuesday CVEs ?
Hello,
Please confirm us if XDR can be installed on below BrokerVM servers.
HostnameOS VersionApplication NameCORTEXXDRVMUbuntu Linux (64-bit)XDR - Broker VMCORTEXXDRBROKERUbuntu Linux (64-bit)CORTEX XDR BROKER
Hi Team,
On cortex console can we check what windows update installed on the endpoint?
why the Monitoring agent service getting stopped on multiples Hosts. When we checked the logs of some machines we got this error " XDR service cyserver was stopped on avd*** ". Could you please explain
We have enabled cortx xdr in report mode and there is a constant high consumption of resources (CPU and Load Average) which causes problems in the machines. Does anyone know what feature usually consumes a lot of resources when enabled and causes the
...
Hi, I recently created an Agent Settings auto-upgrade profile to test with in Cortex XDR.
After creating the profile I created a new policy and then applied it to a small group of endpoints to start with. This worked as expected so I then ramped up
...
Hi,
We want the user to get notified if their system is being isolated throught XDR.
Please provide the steps to do the same.
Thanks
Hi Team,
How to check and find cortex xdr content update release date? Cloud portal only showing the version and how to manually push the content update to some selected endpoints?
What impact it shows on the machines when the Host firewall is Default(Firewall disabled) selected on any Group.
Hello,
Can we know how frequesntly are new vulnerablities added on XDR?
How XDR's vulnerabilty assesment can be used to address vulnerablitlites?
Hello dear community,
Has anyone of you a ready to upload script for IOCs to cortex XDR (directly) from a file? Could you share it?
How and where do you handle the doublettes?
BR
Rob
Hi All,
There are incidents on XDR Console which have alert dated 10-12 days back. Need to understand the time gap and why this incident was not observed on the same day.
Thank you
reaper
on:
NGFW User-ID and Terminal Server (TS) Agent Self-Signed Certificates expiration
| Subject | Likes |
|---|---|
| 1 Like | |
| 1 Like | |
| 1 Like | |
| 1 Like | |
| 1 Like |
