Palo Alto Networks Cortex
  • 05 Jan 2023
  • 1 Minute to read
  • Dark
    Light
  • PDF

Palo Alto Networks Cortex

  • Dark
    Light
  • PDF

The Palo Alto Networks Cortex adapter uses the Palo Alto Networks Cortex Hub to get information about Traps and GlobalProtect agents.

To connect the Palo Alto Cortex adapter, the adapter communicates with an Axonius Cloud endpoint that is authorized to fetch information from the Cortex hub.

Parameters

  1. API Key - An API key given by Axonius Cloud, as specified in the Create an API Key section.

  2. HTTPS Proxy (optional) - A proxy to use when using the Palo Alto Cortex API.

  3. For details on the common adapter connection parameters and buttons, see Adding a New Adapter Connection.

Palo Alto Networks Cortex


Advanced Settings

Note:

From Version 4.6, Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to ​Advanced Configuration for Adapters.

  • Number of days to fetch (optional, default: 3) - Enter the number of days which Axonius will fetch history. If no number is entered, all connections for this adapter will fetch 3 days of data.
Note:

For details on general advanced settings under the Adapter Configuration tab, see Adapter Advanced Settings.

Create an API Key

To authorize Axonius to fetch data from Cortex Hub

  1. Log into Cortex Hub, then locate the Axonius app and activate it.

  2. Click on the Axonius app from the main portal.
    image.png

  3. You are redirected to the Axonius Cloud website. If this is your first time logging in, you need to register a new account in order to proceed.
    image.png

  4. If the Request for Approval dialog appears, select Read Logging Services and click Allow.
    image.png

  5. From the Axonius Cloud website, click Integrations on the left menu to access the Integrations page. Then copy the API Key for the Palo Alto Networks Cortex integration.

    image.png

    Note:

    The API Key might not display immediately upon login. If your Integrations page doesn't have a value for an extended period, contact Axonius support.

  6. In Axonius, go to the Palo Alto Networks Cortex adapter, then add a new client and paste the API Key.



Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.