Palo Alto Networks Cortex XDR Pro

Our Integration guide was accurate at the time of writing but vendors change things frequently! If you find errors or anything is outdated, let us know by raising a request in the Samurai Help Center and we shall get it updated.

Product	Samurai [Local] Collector	Samurai [Cloud] Collector
Palo Alto Networks Cortex XDR Prevent and Pro

To complete this Integration you will need to:

1) From your Cortex XDR Gateway:

• Configure an API Key to allow us to collect telemetry

2) From the Samurai application:

• Complete the Palo Alto Cortex XDR Pro Integration

Configure an API Key to allow us to collect telemetry

Follow Steps 1-3 outlined within the Palo Alto Networks documentation:

• Get Started with Cortex XDR APIs

Use the following parameters when completing the steps:

Be sure to save a copy of the following information as it required to complete the integration:

• API key (as noted in the documentation you will not be able to view it again!)
• API KeyID
• FQDN (for the Base URL e.g https://api-{fqdn})

Complete the Palo Alto Cortex XDR Pro Integration

1. Login to the Samurai MDR web application
2. Select  Integrations
3. Select Create
4. Locate and click Palo Alto Networks Cortex XDR Pro
5. Click Next (we leverage a Samurai Cloud Collector)
6. Enter a Name of Integration
7. Enter a Description (Optional)
8. Enter your Device Name
9. Enter the URL, API KeyID and API Key created in Configure an API Key to allow us to collect telemetry
10. Click Finish

For general information on Integrations refer to the Integrations article.