Palo Alto Networks · Schema
Endpoint
An endpoint enrolled in Cortex XDR protection.
Cloud SecurityCybersecurityFirewallNetwork SecuritySASESOARThreat IntelligenceXDR
Properties
| Name | Type | Description |
|---|---|---|
| endpoint_id | string | Unique endpoint identifier. |
| endpoint_name | string | Endpoint hostname. |
| endpoint_type | string | |
| endpoint_status | string | |
| os_type | string | |
| ip | array | IP addresses assigned to the endpoint. |
| users | array | Users logged into the endpoint. |
| domain | string | |
| alias | string | |
| first_seen | integer | First connection timestamp as Unix epoch milliseconds. |
| last_seen | integer | Last connection timestamp as Unix epoch milliseconds. |
| content_version | string | Cortex XDR agent content version. |
| installation_package | string | |
| active_directory | string | |
| install_date | integer | |
| endpoint_version | string | Cortex XDR agent version. |
| is_isolated | string | |
| isolation_reason | string | |
| scan_status | string | |
| group_name | array |