IBM QRadar

IBM QRadar

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only
Expand all | Collapse all

Configuration guide for CloudGenix log source integration with Qradar

  • 1.  Configuration guide for CloudGenix log source integration with Qradar

    Posted Mon May 10, 2021 01:08 PM

    Configuration guide for CloudGenix log source integration with Qradar SIEM



    #QRadar
    #Support
    #SupportMigration


  • 2.  RE: Configuration guide for CloudGenix log source integration with Qradar

    Posted Tue May 25, 2021 04:02 PM

    As CloudGenix was purchased by Palo Alto, I would inquire about an update or a new DSM to integrate these events. CloudGenix is not a supported DSM at this time, but you can request an feature to have a DSM built and supported by IBM. You can use the DSM Editor to parse and map events if you have CloudGenix ION devices as they can forward Syslog. If you have Prisma SD-WAN, then this can also produce Syslog alarms, system, and auth events.

    If you want an IBM Supported DSM, you should open an RFE though so your request can be evaluated.



    #QRadar
    #Support
    #SupportMigration