Home
EN
Location
Documentation Home
Palo Alto Networks
Support
Live Community
Knowledge Base
MENU
Home
Security Operations
Cortex XSOAR
Cortex XSOAR Multi-Tenant Guide
Plan Your Multi-Tenant Deployment
Configure Security Settings for Multi-Tenant Deployments
Document:
Cortex XSOAR Multi-Tenant Guide
Configure Security Settings for Multi-Tenant Deployments
Download PDF
Last Updated:
Thu Dec 23 00:52:29 PST 2021
Current Version:
5.5 (EoL)
Version 6.8
Version 6.6
Version 6.5
Version 6.2 (EoL)
Version 6.1 (EoL)
Version 6.0 (EoL)
Version 5.5 (EoL)
Table of Contents
Search the Table of Contents
Plan Your Multi-Tenant Deployment
Multi-Tenant Sizing Requirements
Configure Security Settings for Multi-Tenant Deployments
Install Cortex XSOAR for a Multi-Tenant Deployment
Install Cortex XSOAR for a Multi-Tenant Deployment
Installer Flags
Upgrade Your Multi-Tenant Deployment
Get the Host Installer Manually
Configure the Multi-Tenant Deployment
Main Account to Tenant Communication Encryption
Add a Host
Add a Tenant to a Host
Configure Live Backup
Configure the HTTP Timeout
Forward Server Configurations to Tenant Accounts
Move a Tenant to a Different Host
Stop and Start a Tenant
Install Engines in a Multi-Tenant Deployment
Manage Content
Manage Content Overview
Add Propagation Labels to an Existing Tenant Account
Add Propagation Labels to Content
Content Dependencies and Propagation
Sync Content to Tenant Accounts
Troubleshoot Errors When Syncing All Accounts
Disable Propagation Labels
Share Indicators
Share Indicators Overview
Export Indicators to the Shared Index
Configure Tenants to Ingest Shared Indicators
Ingest Indicators from the Shared Indicators Index
Share Indicators with Tenants Using Propagation Labels
Remote Repositories for Multi-Tenant Deployments
Remote Repositories Overview
Configure a Remote Repository on a Development Machine
Configure a Remote Repository on the Main Account
Edit and Push Content to a Remote Repository
Troubleshoot a Remote Repository Configuration
Troubleshoot a Remote Repository Definition
Troubleshoot Editing and Pushing Content
Troubleshoot Content Issues
Plan Your Multi-Tenant Deployment
Multi-Tenant Sizing Requirements
Configure Security Settings for Multi-Tenant Deployments
Install Cortex XSOAR for a Multi-Tenant Deployment
Install Cortex XSOAR for a Multi-Tenant Deployment
Installer Flags
Upgrade Your Multi-Tenant Deployment
Get the Host Installer Manually
Configure the Multi-Tenant Deployment
Main Account to Tenant Communication Encryption
Add a Host
Add a Tenant to a Host
Configure Live Backup
Configure the HTTP Timeout
Forward Server Configurations to Tenant Accounts
Move a Tenant to a Different Host
Stop and Start a Tenant
Install Engines in a Multi-Tenant Deployment
Manage Content
Manage Content Overview
Add Propagation Labels to an Existing Tenant Account
Add Propagation Labels to Content
Content Dependencies and Propagation
Sync Content to Tenant Accounts
Troubleshoot Errors When Syncing All Accounts
Disable Propagation Labels
Share Indicators
Share Indicators Overview
Export Indicators to the Shared Index
Configure Tenants to Ingest Shared Indicators
Ingest Indicators from the Shared Indicators Index
Share Indicators with Tenants Using Propagation Labels
Remote Repositories for Multi-Tenant Deployments
Remote Repositories Overview
Configure a Remote Repository on a Development Machine
Configure a Remote Repository on the Main Account
Edit and Push Content to a Remote Repository
Troubleshoot a Remote Repository Configuration
Troubleshoot a Remote Repository Definition
Troubleshoot Editing and Pushing Content
Troubleshoot Content Issues
End-of-Life (EoL)
Previous
Next
Configure Security Settings for Multi-Tenant Deployments
It is recommended that you add these server configurations to harden your multi-tenant deployment.
These recommended security configurations are intended for deployments in which the main account and tenant accounts do not reside in the same DMZ.
Recommended Security Configurations
Key
Value
Description
security.tenant.use.secret
true
Generates a unique cookie session for the tenant account and main account.
Tenant.AcceptAnyCertificate
false
Validates the host certificate.
host.insecure
true
Trusts any certificate (when host accounts exist).
In the main account, navigate to
Settings
About
Troubleshooting
.
Create a separate server configuration for each of the recommended configurations.
Scroll to the bottom of the
Server Configuration
section.
Click
Add Server Configuration
.
Previous
Next
Most Popular
Recommended For You
Recommended Videos
Recommended videos not found.
