XDR Collector Machine Requirements and Supported Operating Systems - Administrator Guide - Cortex XDR - Cortex - Security Operations

Cortex XDR Pro Administrator Guide

Product
Cortex XDR
License
Pro
Creation date
2023-10-31
Last date published
2024-03-19
Category
Administrator Guide
Abstract

Lists the supported operating systems and requirements for the collector machines for configuring the Cortex XDR Collectors.

You can configure XDR Collectors that are dedicated for on-premise data collection on Windows and Linux machines. The following hardware and software specifications are required for the collector machines.

Machine Operating System

Requirement

Specifications

Linux

Processor

2.3 GHz dual-core

RAM

4GB; 8GB recommended

Hard disk space

10GB

Architecture

x86 64-bit

Kernel version

2.6.32

Supported operating system versions

  • Red Hat Enterprise Linux 6 (6.7 and later)

  • Red Hat Enterprise Linux 7

  • Red Hat Enterprise Linux 8

  • Red Hat Enterprise Linux 9

  • SUSE Linux Enterprise Server 12

  • SUSE Linux Enterprise Server 15 SP0

  • SUSE Linux Enterprise Server 15 SP1

  • SUSE Linux Enterprise Server 15 SP2

  • Ubuntu Server 12

  • Ubuntu Server 14

  • Ubuntu Server 16

  • Ubuntu Server 18

  • Ubuntu Server 20

  • Ubuntu Server 22

  • Oracle Linux 6 (6.7 and later)

  • Oracle Linux 7

  • Oracle Linux 8

  • Oracle Linux 9

Software packages

  • Verify you have standard Unix programs installed.

  • ca-certificates

  • openssl 1.0.0 or a later release

  • Distributions with SELinux in enforcing or permissive mode:

    • Red Hat Enterprise Linux 6, CentOS 6, and Oracle Linux 6—policycoreutils-python

    • Red Hat Enterprise Linux 7, CentOS 7, and Oracle Linux 7—policycoreutils-python and selinux-policy-devel

    • SUSE—policycoreutils-python and selinux-policy-devel

    • Debian and Ubuntu—policycoreutils and selinux-policy-dev

  • CentOS 6.10—Enable the dynamic CA instead of the legacy CA:

    1. Enable the dynamic CA configuration: update-ca-trust force-enable

    2. Import the certificates: cp XDR-certificate.crt /etc/pki/ca-trust/source/anchors/.

    3. Rebuild the certificate database: update-ca-trust extract

Networking

  • Allow communication from the XDR Collector TCP port to the server (the default is port 443).

Windows

Processor

  • Intel Pentium 4 or later with SSE2 instruction set support

  • AMD Opteron/Athlon 64 or later with SSE2 instruction set support

  • Dual core processor (minimum)

RAM

2GB minimum

Hard disk space

200MB minimum; 20GB recommended

Supported operating system versions

  • Windows Azure Virtual Desktop (WVD or AVD)

  • Windows 7

    • Windows 7 SP1 (All editions except Home)

    • Embedded Standard 7 SP1

    • Embedded POSReady 7 (Based on Windows 7 SP1)

  • Windows 8

    • 8.1 (and with FIPS mode)

    • Embedded 8.1 Professional (Supported until January 2023)

  • Windows 10

    • Education

    • Pro (CB and CBB)

    • Enterprise (CB, CBB, and LTSB)

    • Updates 21H2, 21H1, 20H2, 2004, 1709, 1909, 1903, 1809, 1803 (Enterprise and Professional)

    • Updates 22H2, 22H1

    • Enterprise 2019 LTSC

    • Windows 10 IoT Core

    • Windows 10 IoT Enterprise

  • Windows 11

    • Windows 11

    • Updates 22H2, 22H1

    • Pro/Pro Education/Pro Workstations

    • Enterprise

    • Education/Home

    • IoT Enterprise

  • Windows Server

    • Datacenter

    • 2008 R2 SP1

    • 2012 (Supported until October 2026), 2012 R2 (Supported until January 2026), All editions; FIPS mode

    • 2016 (Standard edition; Server with Desktop experience, previously known as Server with a GUI)

    • 2016 Datacenter edition

    • 2019

    • Core option (Windows Server 2012, 2012 R2, and 2016 only)

    • 2019 Standard (Server Core)

    • 2022

Networking

  • Allow communication from the XDR Collector TCP port to the server (the default is port 443).

Applications and utilities

  • Windows Accessories (Notepad) to view logs