IBM QRadar

IBM QRadar

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only

  • 1.  API call to get EPS and FPS current usage

    Posted Thu April 11, 2024 06:02 PM

    Is there a QRadar API call can get the current EPS and FPS usage? 

    I tried to look at the API doc but can't find the option.
    https://ibmsecuritydocs.github.io/qradar_api_20.0/



    ------------------------------
    Ray Tam
    ------------------------------


  • 2.  RE: API call to get EPS and FPS current usage

    Posted Fri April 12, 2024 04:36 AM
    Edited by Vishal Tangadkar Fri April 12, 2024 04:37 AM

    Hello Ray,

    You need to create the search first which will you EPS and FPS usage how you wanted.  Then you can make API call to run the search and gather results from the search.

    Below Technote should help you with that.
    https://www.ibm.com/support/pages/qradar-how-run-search-qradar-using-restful-api

    Vishal Tangadkar



  • 3.  RE: API call to get EPS and FPS current usage

    Posted Fri April 12, 2024 11:08 AM

    HI Vishal,

    Thanks for the information.  It is helpful.  Looks like the trick is to come up with a python script runs the saved query, find the search_id, then use the search_id to get the result.

    Are you or anyone has some sample script I can use as a reference?

    Thanks,



    ------------------------------
    Ray Tam
    ------------------------------

    Original Message