Configure server settings - Configure server settings such as keyboard shortcuts, timezone, and timestamp format. - Administrator Guide - Cortex CLOUD

Keyboard Shortcuts

Enables you to change the default shortcut settings.  The shortcut value must be a keyboard letter, A through Z, and cannot be the same for both shortcuts.

Timezone

Select a specific timezone. The timezone affects the timestamps displayed in Cortex Cloud, auditing logs and when exporting files.

Timestamp Format

The format in which to display Cortex Cloud data. The format affects the timestamps displayed in Cortex Cloud, auditing logs and when exporting files.

This setting is configured per user and not per tenant.

Email Contacts

A list of email addresses  Cortex Cloud can be used as a distribution list. The defined email addresses are used to send product maintenance, updates, and new version notifications. These addresses are in addition to the email addresses registered with your Customer Support Portal account.

Custom Logo

By default, the Cortex Cloud logo displays on communication task emails. You can replace the default logo with a custom logo to match your organization's branding.

Supported file formats are PNG, JPEG, SVG, and GIF.

The minimum recommended image dimensions are 50px height and 50px width. The recommended maximum file size is 100 KB.

AI Configuration

Password Protection (for downloaded files)

Enable password protection when downloading retrieved files from an endpoint. This prevents users from opening potentially malicious files.

Administrator permissions required.

Google Maps Key

Enter the Google Maps API key to display the physical location of an entity on a Google map.

Scope-Based Access Control (SBAC)

Enforces granular scoping on users with a scoping configuration. A user can inherit scoping configurations from a user group, or have the scoping configuration applied directly on top of the role assigned from either a user group or a generated API Key.

By default, Enable Scope Based Access Control is disabled and granular scoping is not enforced. Before enabling SBAC, we recommend that an administrator or a user with Access Management permissions first ensure that the users, user groups, and API Keys defined in Cortex Cloud are granted the required access by assigning the relevant scopes. For more information, see Manage user scope.

(Optional) If enabled, you can select the Endpoint Scoping Mode, which is defined per tenant:

XQL Configuration

Enables setting case sensitivity across Cortex Cloud.

By default, this setting is set to false and field values are evaluated as case insensitive.

This setting overwrites any other default configuration except for BIOCs, which will remain case-insensitive no matter what this configuration is set to.

Define the cases target MTTR per issue severity

Determines within how many days and hours you want issues resolved according to the issue severity Critical, High, Medium, and Low.

The defined MTTR is used to display the Resolved Issue MTTR dashboard widgets.

Impersonation Role

The type of role permissions granted to the Palo Alto Networks Support team when opening support tickets. We recommend that role permissions be granted only for a specific time frame, and full administrative permissions be granted only when specifically requested by the Support team.

Role permissions include:

Permission Reset Timeframe: Determines how long role permissions are valid.

Case display modes

Allow users the access the Cases page in legacy mode.

Caching

Improve performance on the Cases and Issues pages by enabling a temporary data cache.