Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.
We're in the process of installing a new setup with Citrix App Layering (Full User layers) and MCS. I've followed the suggestions here on non-persistent installation (VDI_ENABLED=1); even though our setup technically is sort of persistent (because of
...
Hi all,
Some of our endpoints in our Cortex XDR Console shows a "Connection Lost" Status but the endpoint is still active.
The cytray shows disabled and no connection. We also checked the control panel and upon checking, The installed Cortex XDR Agen
...
When running xql queries against host inventory i have 2 questions
1.
Is there documentation that states what each field means in the array
The example below " start mode" and "state" are numerical
It appears start mode3= "Service Manual Start" but i nee
...
The Get Incidents API allows you to filter based on an incident_id_list, but not a list of endpoint_ids much less endpoint group. The Get Alerts API allows you to filter on an alert_id_list, but not a list of endpoint_ids much less endpoint group.
I
...
I am attempting to pull in endpoint/incident data using the appropriate API in PowerBI. However, there's a limit of 100 . I tried adding a separate custom column anticipated that my total number of incidents would be let's say "x" value, but that jus
...| Subject | Likes |
|---|---|
| 3 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like |
| User | Likes Count |
|---|---|
| 8 | |
| 5 | |
| 3 | |
| 3 | |
| 3 |
