# Palo Alto Cortex XDR

{% stepper %}
{% step %}

### Domain

The access URIs for Cortex XDR API resources are built upon a customer-specific and unique Fully Qualified Domain Name (FQDN). This FQDN standardly uses the api-{fqdn} format to enable API access and forms the base address for the API call. For example, a complete base address Domain will look like this: api-prod1.xdr.paloalto.com

{% hint style="info" %}
The FQDN is a unique host and domain name associated with each tenant. When you generate the API Key and Key ID, you are assigned an individual FQDN.
{% endhint %}

* Right-click your API key and select View Examples.
* Copy the CURL Example URL. The example contains your unique FQDN: <https://api-{fqdn}/public\\_api/v1/{name> of api}/{name of call}/
  {% endstep %}

{% step %}

### API Key

Get your Cortex XDR API Key:

* In Cortex XDR, navigate to Settings > Configurations > Integrations > API Keys.
* Select + New Key.
* Choose API Key Type: Advanced.
* If you want to define a time limit on the API key authentication, mark Enable Expiration Date and select the expiration date and time.
* Select the desired level of access for this key.
* Generate the API Key.
* Copy the API key, and then click Done. This value represents your unique Authorization:{key}.

{% hint style="info" %}
You will not be able to view the API Key again after you complete this step so ensure that you copy it before closing the notification.
{% endhint %}

{% hint style="info" %}
Click for more information.
{% endhint %}
{% endstep %}

{% step %}

### API Key ID

Get your Cortex XDR API Key ID:

* In the API Keys table, locate the ID field.
* Note your corresponding ID number. This value represents the x-xdr-auth-id:{key\_id} token.

{% hint style="info" %}
Click for more information.
{% endhint %}
{% endstep %}

{% step %}

### SSL

Use SSL for connection (optional, default: Unencrypted).
{% endstep %}
{% endstepper %}

{% hint style="warning" %}
Please perform a connection test to ensure there is a valid connection to the host.\
When the discovery operation is finalized, you will be able to see the details on the Assets page.
{% endhint %}