Guides
sevco.io

Palo Alto Cortex XDR

Suggest Edits

Cortex XDR by Palo Alto Networks is an extended detection and response platform that monitors and manages cloud, network, and endpoint events and data.

Sevco Asset Type

Device

Required Parameters

  • URL - URL for the Cortex XDR server

  • api_key_id - Unique ID for the API Key

  • api_key - API Key

  • api_key_security_level - The security level for the API Key, either Standard or Advanced.

📘

The key must have view access for Endpoint Administration.

Instructions to generate the API Key ID and API Key can be found here

Configuration

  1. Add a source: Follow our instructions to add a Sevco source.

  2. Provide credentials: You'll be asked to provide source credentials that Sevco will use to connect to SOURCE:

850

Updated about 1 year ago