Palo Alto Cortex XDR CCP

Palo Alto Cortex XDR CCP Logo

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

Back to Solutions Index

Attribute Value
Publisher Microsoft Corporation
Support Tier Microsoft
Support Link https://support.microsoft.com
Categories domains
Version 3.0.4
Author Microsoft
First Published 2024-12-07
Solution Folder Palo Alto Cortex XDR CCP
Marketplace Azure Marketplace · Popularity: 🔵 Medium (71%)

The Palo Alto Cortex XDR data connector allows ingesting logs from the Palo Alto Cortex XDR API into Microsoft Sentinel. The data connector is built on Microsoft Sentinel Codeless Connector Platform. It uses the Palo Alto Cortex XDR API to fetch agents, alerts, incidents, management and endpoint logs and it supports DCR-based ingestion time transformations that parses the received security data into a custom table, thus resulting in better performance.

Data Connectors

This solution provides 1 data connector(s):

Tables Used

This solution uses 5 table(s):

Table Used By Connectors Used By Content
PaloAltoCortexXDR_Alerts_CL Palo Alto Cortex XDR -
PaloAltoCortexXDR_Audit_Agent_CL Palo Alto Cortex XDR -
PaloAltoCortexXDR_Audit_Management_CL Palo Alto Cortex XDR -
PaloAltoCortexXDR_Endpoints_CL Palo Alto Cortex XDR -
PaloAltoCortexXDR_Incidents_CL Palo Alto Cortex XDR -

Release Notes

Version Date Modified (DD-MM-YYYY) Change History
3.0.4 14-10-2025 Updating CCF Polling file to implement parameters
3.0.3 09-04-2025 Updating CCF connector parameters
3.0.2 10-02-2025 Advancing CCF Data Connector from Public preview to Global Availability.
3.0.1 22-01-2025 Added Preview tag to Data Connector
3.0.0 17-12-2024 Initial Solution Release

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

Back to Solutions Index