Using Regex in Cortex XDR XQL query

I want to extract a particular string from a particular field value from the Cortex XDR endpoint category and use it in XQL query. Is it possible to do that?

For example from the below string (it is a field )

arn:aws:ec2:eu-abcd-1:123456789:instance/

CE DoC ( Déclaration of Conformity) for PA 460 and 50 w DC Adapter

Hi Community,

I am looking for a document required by Customs relative to Europe countries.

Do you know how I can find the CE Declaration of Conformity for Palo Alto PA 460 and the 50w DC Adapter coming with ?

Thank you.

Global Protect 1.2.2-14 winhttpObj, error! ipaddress

Hi,

I keep getting this error when trying to connect with global protect, this pc is on the internal network. I should get the massage 'Connected Internal'...any ideas. I have included the log below and highlighted the line.

(T3776) 04/24/13 09:46:14:8

Support Portal Account unavailable

Hello,

Impossible for me to connect to support portal after creating my account.

Tried to contact support but it redirect me to support portal where i'm not authorized to access...

Any idea how to unblock it ?

Thx!

Sales Material for Clientele

Hi,

We are an MSP that is looking for Sales Material or training for Palo Alto. I am having a difficult time finding any of this material on Palo Alto itself, so wanted to see what, if any, the community has to share. Thanks!

Expedition question how to get firewall config from Panorama

How do I get just 1 firewall config out of Panorama. My panorama manages 100's of firewall's and I just want to export 1 firewall into Expedition so I can do some bulk changes. Then push it back via a partial push.

Regards

Jon

Create authentication profile api

how to create authentication profile using api or xml api or cmd commands 

Reset-Both for client/sftp server

I have been noticing lots of traffic between an internal client to one of our Sftp server where the log states

SSH User Authentication Brute Force on Port 22  - Action Reset-Both.  We have checked the client and has the correct credentials for the de

WLC -Radius Communication over Prisma SDWAN

Wireless user Can be authenticated successfully when WLC and Radius in Same LAN network   OR  WLC Communicate with Radius over MPLS.

it is not working over Prisma SDWAN.

I have checked from the radius server - No fragmentation issue BUT it gives

MIB Files Download

Does anyone know where I can find the Palo .MIB files? Not the .my or .md5 files. I have already loaded them and well it was useless. Maybe it's my lack of intellect but they are missing the OID numbers. I also can't get them load when creating an SN

Icon Legend

Hello -

Is there an icon legend for Palo Alto.  Meaning, the icon difference between like a single user and a group.  Make sense?

mDNS (Apple Bounjour) between two VLANs through a PA

Hi,

this is the scenario:

- a PA with two physical L3 interfaces (1 zone per interface, 1 subnet per interface, we call them A and B).

- I have a device in Subnet A which is an Airport thing with a printer attached. Devices in Subnet A they can discov