IBM QRadar

IBM QRadar

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only
Back to discussions
Expand all | Collapse all

Does QRadar Community Edition support Cisco Estreamer?

  • 1.  Does QRadar Community Edition support Cisco Estreamer?

    Posted Sun January 31, 2021 11:52 PM

    I am trying to get Cisco Estreamer configured to gather firewall log data with the Cisco Firepower app but the instructions reference running commands on the QRadar appliance that just don't exist on the file system. Specfically the import script for the certificate "/opt/qradar/bin/estreamer-cert-import.pl"

    The QRadar app I am using is here

    The Estreamer app is installed on the QRadar Community Edtion appliance but I can't perform any configuration. Is anybody using Estreamer with the Community Edition?

    The documentation for the install is : https://www.cisco.com/c/en/us/td/docs/security/firepower/integrations/QRadar/integration-guide-for-the-cisco-firepower-app-for-ibm-qradar/install_and_setup.html



    #QRadar
    #Support
    #SupportMigration


  • 2.  RE: Does QRadar Community Edition support Cisco Estreamer?

    Posted Wed February 03, 2021 10:35 AM

    Hi,

    Do you mean script /opt/qradar/bin/estreamer-cert-import.pl does not exist?

    Do you have Cisco Firepower eStreamer protocol installed on this QRadar CE?



    #QRadar
    #Support
    #SupportMigration