Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Ingestion API Supported | ✓ Yes |
Source: Connector definition
| Column Name | Type | Description |
|---|---|---|
| AgentId | string | Unique identifier for the Cortex XDR agent installed on the endpoint. |
| AgentStatus | string | Current status of the Cortex XDR agent (e.g., active, inactive, disconnected). |
| AgentType | string | Type of Cortex XDR agent (e.g., Windows, macOS, Linux). |
| HostName | string | Name of the host machine where the Cortex XDR agent is installed. |
| IpAddress | dynamic | IP address of the host machine, stored as a dynamic object. |
| LastSeen | datetime | Timestamp of when the agent was last seen active, in Unix epoch format. |
| OperationalStatus | string | Operational state of the endpoint (e.g., online, offline). |
| Tags | dynamic | Tags or labels associated with the endpoint, stored as a dynamic object. |
| TimeGenerated | datetime | The timestamp (UTC) reflecting the time in which the event was generated. |
| Users | dynamic | List of users associated with the endpoint, stored as a dynamic object. |
This table is used by the following solutions:
This table is ingested by the following connectors:
| Connector | Selection Criteria |
|---|---|
| Palo Alto Cortex XDR |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊