no integration for 3rd party "security providers" in "security center"?

Question

We're seeing Windows Defender and Palo Alto Cortex XDR fighting for resources on a number of our Windows Server instances...

security agents (Palo Alto Cortex XDR and Defender) - Screenshot 2023-07-05 143517

...and noticed that "Cortex XDR" is not listed as a "provider" in Windows Security Center despite having been installed.

security center - security providers - Screenshot 2023-07-05 143517

security center - security providers - Screenshot 2023-07-05 144042

("the page you are trying to access has no supported features and is not available")

Palo Alto docs say this:

The Cortex XDR agent registers with the Windows Security Center as an official Antivirus (AV) software product. As a result, Windows shuts down Microsoft Defender on the endpoint automatically, except for endpoints that are running Windows Server versions. To avoid performance issues, Palo Alto Networks recommends that you disable or remove Windows Defender from endpoints that are running Windows Server versions and where the Cortex XDR agent is installed.

(Note how Windows Server instances are not supported by Palo Alto in terms of disabling or shutting it down.)

Would anyone know:

Why I can't access "providers" under "security providers" in Windows Server 2019?
Why doesn't (or can't) Palo Alto shut down or disable Windows Defender on Windows Server versions after installing Cortex XDR?
What is the best way to automate the process of disabling Windows Defender on Windows Server instances where Cortex XDR is actively protecting the system?

Thanks!

Share via

no integration for 3rd party "security providers" in "security center"?