Cortex XDR for Linux Requirements
The Cortex XDR agent for Linux has the following requirements:
4GB; 8GB recommended
Hard disk space
Operating system versions
Where can I install the Cortex XDR Agentin the
Palo Alto Networks® Compatibility Matrix.
To perform malware analysis of ELF files, and collect data for EDR and behavioral threat analysis, the Cortex XDR agent for Linux requires a supported kernel version of 3.4 or later, as listed in Cortex XDR Agent 7.0 Supported Kernel Versions by Distribution. If you deploy the Cortex XDR agent on a Linux server that is not running one of the kernel versions required for these additional protection capabilities, the agent will operate in asynchronous mode: the agent will obtain a verdict for the executed ELF file in parallel to its execution and terminate it if a malware verdict is obtained. In addition, data collection for EDR and behavioral threat protection will not be supported.
For Cortex XDR agents 7.1 and later releases deployed on endpoints running kernels RHEL, CentOS, Oracle 8, or SuSE 15, you must disable UEFI Secure Boot on the machine to enable synchronous protection. Otherwise, the Cortex XDR agent will operate in asynchronous mode as explained above.
Allow communication on the TCP port 443 from the Cortex XDR agent to server.
Cortex XDR Agent 7.0 Supported Kernel Versions by Distribution
Supported Kernel Versions
Recommended For You
Recommended videos not found.