Palo Alto Cortex XDR CCP

Note: Please refer to the following before installing the solution:

• Review the solution Release Notes

• There may be known issues pertaining to this Solution, please refer to them before installing.

The Palo Alto Cortex XDR data connector allows ingesting logs from the Palo Alto Cortex XDR API into Microsoft Sentinel. The data connector is built on Microsoft Sentinel Codeless Connector Platform. It uses the Palo Alto Cortex XDR API to fetch agents, alerts, incidents, management and endpoint logs and it supports DCR-based ingestion time transformations that parses the received security data into a custom table, thus resulting in better performance.

Data Connectors: 1

Learn more about Microsoft Sentinel | Learn more about Solutions