>
    Strata Copilot
    New Features in August 2025
    Focus
    Download PDF
    Focus
    1. Home
    2. Device Security
    3. Release Notes
    4. New Features in 2025
    5. New Features in August 2025
    Download PDF
    Device Security

    New Features in August 2025

    Table of Contents

    New Features in August 2025

    Review the new features introduced in Device Security in August 2025.
    Where Can I Use This?What Do I Need?
    • Device Security (Managed by Strata Cloud Manager)
    • (Legacy) IoT Security (Standalone portal)
    One of the following subscriptions:
    • Device Security subscription for an advanced Device Security product (Enterprise, OT, or Medical)
    • Device Security X subscription
    The following new features and enhancements were introduced for Device Security in August 2025.

    New Polling Integration Support

    (January 2026) The Device Security polling integration with Cortex XSOAR now supports the following protocols for polling:
    • GE CARESCAPE Gateway
    • Ping/ICMP Connection Test and ICMP Traffic
    • Hikvision for custom OID
    • Axis Communications for older devices
    (October 2025) The Device Security polling integration with Cortex XSOAR now supports the following protocols for polling:
    • Beckhoff TwinCAT UDP
    • Codesys TCP
    • Siemens PLC HTTP/HTTPS
    (August 2025) The Device Security polling integration with Cortex XSOAR now supports the following protocols for polling:
    • HTTP / HTTPS banner extraction
    • GE-SRTP
    • Beckhoff TwinCAT
    (April 2025) The Device Security polling integration with Cortex XSOAR now supports the following protocols for polling:
    • Axis Communications
    • FTP Banner
    Additionally, you can now provide a DNS server when configuring polling with reverse DNS to get device hostnames.
    (January 2025) The Device Security polling integration with Cortex XSOAR now supports the following protocols for polling:
    • Cognex Discovery
    • EPM
    • Moxa
    • Niagara Fox

    Device Security Launch

    Device Security is a significant evolution from IoT/OT Security. Device Security delivers unified, AI-powered protection across all connected devices, to include unmanaged and managed IT, IoT, OT, and BYOD devices. Leveraging Precision AIĀ®, Device Security aims to provide proactive and holistic asset protection with comprehensive visibility, built-in adaptive security, and significantly enhanced threat prevention capabilities to effectively reduce risk across your entire network.
    The transition to Device Security signifies a fundamental shift in our approach, beyond previous IoT/OT Security offerings. Key new features and enhancements include:
    • Expanded Device Coverage provides holistic asset protection for all connected devices, directly addressing the need for broader coverage for unmanaged BYOD and noncompliant managed IT assets, and expanding the asset scope and risk insights.
    • Comprehensive Visibility and Context aggregates visibility with greatly enriched risk contexts, now supporting over 2,000 identity and posture attributes for all connected devices.
    • Proactive Risk Mitigation provides adaptive device policy rules with Advanced Device-ID, which leverages all available identity and risk attributes for enforcement, compared to six attributes previously.
    • Streamlined Compliance & Reporting improves risk and compliance reporting through full dashboard customization and a more scalable Query Builder.
    • Simplified Integrations with a free, limited, cloud-based Cortex XSOAR can be activated directly from the integrations page in Strata Cloud Manager. Third-party integrations no longer require a separate add-on license.

    ServiceNow Service Graph Connector Integration

    Device Security supports integrating with ServiceNow Service Graph Connector to learn about devices and endpoints from ServiceNow. Device Security can retrieve device details from ServiceNow and use that information to enrich device information in the Device Security assets inventory. Device Security also creates new devices in the assets inventory for devices learned through the Service Graph Connector integration. You can download the Service Graph Connector for PANW IoT from the ServiceNow Store, and also find the installation and configuration guide there.

    Network Discovery Plugin 2.2.2

    (October 2025) The Network Discovery plugin version 2.2.3 introduces an enhancement for SNMP crawling to skip IP phones. This helps improve runtime and performance for an SNMP crawl. Version 2.2.3 also includes a number of addressed issues to improve runtime performance and results. See Known Issues in Network Discovery 2.2 for a full list of addressed issues. The Network Discovery plugin version 3.0.1 includes the same functionality as Network Discovery 2.2.3 for firewalls running PAN-OS 12.1.2 and later.
    (August 2025) The Network Discovery plugin version 2.2.2 includes a number of addressed issues to improve runtime performance and results output. See Known Issues in Network Discovery 2.2 for a full list of addressed issues.
    (July 2025) The Network Discovery plugin version 2.2.1 includes a number of addressed issues to improve configuration and runtime performance. See Known Issues in Network Discovery 2.2 for a full list of addressed issues.

    Extended API Functionality for Device Attributes

    Device Security extends API support to include getting a list of all device attribute names, and then passing up to 50 attributes to the Device Inventory v2 API to get those attributes' values for devices in the assets inventory. Use these new API options to specify attributes of interest, and to get the most up-to-date list of all available device attributes, including third-party attributes.

    © 2026 Palo Alto Networks, Inc. All rights reserved.