Palo Alto Networks Firewalls with Strata Logging Service Integration

Note: This integration requires Cisco XDR Advantage or Cisco XDR Premier licensing tier.

Palo Alto Networks Firewalls can be configured to send logs to Strata Logging Service. In this configuration, they can be integrated with Cisco XDR to provide security alerts into Cisco XDR, where they are normalized and enriched with endpoint and cloud data from various products and included in Incidents for your teams to respond to. This integration also allows you to include firewall security detections in your investigations of observables such as IP addresses, URLs, file names, MD5 hashes, SHA-256 hashes, emails, and email subjects.