Cortex XDR Agent for Windows - Administrator Guide - 8.3 - Cortex XDR Agent - Cortex XDR - Advanced Endpoint Protection - Cortex - Security Operations

Cortex XDR Agent Administrator Guide
Product
Cortex XDR Agent
Cortex XDR
Version
8.3
Creation date
2024-01-02
Last date published
2025-03-10
Category
Administrator Guide
Abstract

To install, use, upgrade, and uninstall the Cortex XDR agent on Windows endpoints, see the references in this topic.

The Cortex XDR agent protects Windows endpoints by preventing known and unknown malware from running on those endpoints and by halting any attempts to leverage software exploits and vulnerabilities. The agent enforces Security policy for your organization as defined in Cortex XDR. When a security event occurs on an endpoint, the agent collects forensic information about that event that you can use to analyze the incident.

The following topics describe how to install and use the Cortex XDR agent for Windows.

Install the Cortex XDR agent on unsupported-ACS OS versions

Available in agent versions 7.9.103-CE and 8.3-CE: To override the default behavior, admin must provide an MSI flag, NO_ACS_SUPPORT=1, as a parameter to the installer. This flag indicates that the installation is to be made on an ACS-unsupported operating system.

A fresh installation is needed for using this flag. On future upgrades, Cortex XDR agent will automatically detect that it is being executed on an ACS-unsupported OS and will not fail the installation.

Note

The flag cannot be provided as part of an existing Cortex XDR agent upgrade.

If upgrading from a 7.5-CE release line to 7.9-CE or 8.3-CE, even without explicitly providing the installer flag, the installer will detect that ACS is unsupported and will treat the installation as if the flag was given.