Palo Alto Networks® Cortex Data Lake

Alerts 

• Palo Alto Networks Cortex DL - Authentication Failed: This alert is triggered when authentication failure is detected in Palo Alto Networks® Cortex Data Lake.
• Palo Alto Networks Cortex DL - Web traffic blocked : This alert is triggered when web traffic is blocked in Palo Alto Networks® Cortex Data Lake.
• Palo Alto Networks Cortex DL - Successful configuration changed: This alert is triggered when successful configuration change is detected in Palo Alto Networks® Cortex Data Lake.
• Palo Alto Networks Cortex DL - Threat detected: This alert is triggered when a threat is detected in Palo Alto Networks® Cortex Data Lake.
• Palo Alto Networks Cortex DL - Unauthorized configuration change action: This alert is triggered when unauthorized configuration change action is detected in Palo Alto Networks® Cortex Data Lake.

Reports

• Palo Alto Networks Cortex DL - Configuration changes: This report provides a detailed summary of configuration changes. It contains a source IP address, log source, destination username, and more.
• Palo Alto Networks Cortex DL - Authentication Activities: This report provides a detailed summary of authentication activity. It contains a source IP address, log source, source username, destination username, and more.
• Palo Alto Networks Cortex DL - Threat activities: This report provides a detailed summary of threat activity. It contains a source IP address, log source, source username, destination username, http request, direction of attack, and more.
• Palo Alto Networks Cortex DL - Traffic Activities: This report provides a detailed summary of traffic activity. It contains a source IP address, log source, source username, destination username, Protocol type, and more.