Strata HTTPS Log Forwarding

Hello World!

We've just hit a problem with HTTPS Log Forwarding out of Strata Logging Service to Microsoft Sentinel.  We have an existing forwarder working, but want to replace it with one forwarding to a new workspace, so we have set up a new list

SLS License Included?

Plan to ingest my NGFW logs to Cortex XDR portal, we need SLS license in Firewall and Pro per GB license in XDR. 

My questions
1) is the SLS license included in my PA-series firewall or do we need to purchase separately?

2) if included, which model i

Defining "field type" in the Strata Logging Service

Strata Logging Service 

https://docs.paloaltonetworks.com/strata-logging-service/log-reference/network-logs/network-traffic-log/network-traffic-leef-fields
Does anyone know the definition of “Field Type” in the above document?
Does this mean that the “

Prisma Access: Log Forwarding CEF Syslog

Hello Community,

I am part of an MSSP team supporting Prisma Access with Panorama and the Strata Logging Service in the default CSV format.

I noticed that the Strata Logging Service also supports the CEF option, and I have the configuration details f

Welcome to the Strata Logging Service Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

Logging to Cortex Data Lake

I have a 3tb subscription to CDL..First off is this service now called "strata logging service"? 

Can I send logs from all my firewalls to panorama and the setup panorama to send all those logs to CDL? Is there some license needed for this? I have

How to dowload Strata rules

hi all, Is there a way to export security rules from the Strata Cloud Manager into a csv file, or pdf?

What Hash type is seen in File logs

When looking through Strata Cloud Manager for DLP files seen in log type file, there is a file hash.  This hash is SHA256.

Strata Log Forwarding Email Profile. Customized email subject

Hi,

I need to create and 1 email profile, sending messages/alerts generated by diferent devices in diferent locations.

How can I add to the subject, the device name, or any other info, that can distinguish from where the alert are coming from or wh

starta cl

I have a question regarding the licensing model for the Cloud Manager. Specifically, if I have four virtual machine firewalls and four physical firewalls, how should I measure the required licenses?

Cortex XDR Pro GB

Hi,

Understand that cortex XDR Pro GB can ingest data from multiple source. My customer would like to use this license to ingest data from Fortinet firewall. Previously, I did sizing based on strata logging service estimator by selecting Cortex XDR

Configuring BGP within Service Connections timer

I needed to modify the earlier question; it was not a BGP keepalive timer, but as mentioned below.

"I wish to edit the BGP timers for Service Connection from Prisma Access.  The settings can be viewed from Workflow ---Prisma Access Setup---Ser

Setup > Management > Cortex Data Lake > Cortex Data Lake Status > Show Status

Hi,

Question #1: How do I get the CDL Status "Certificate" to go green?

Question #2: What's the best way to send only alert logs from the FW to CDL so we can take advantage of the AIOps Free alerts?

#Show Status has "certificate" greyed out and o

Critical version 7.5 agent unable to download

Hi Community people, 

we have a few machines with macOS 10.13 High Sierra, as per the documentation 7.5CE version should support it. 

in the agent installation option, we are unable to see 7.5 CE version agent installers. we could download only t