IBM QRadar

IBM QRadar

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only

  • 1.  ESET protect log integration into Qradar

    Posted Thu May 25, 2023 09:17 AM
    Edited by Andrius Thu May 25, 2023 09:17 AM

    Hello,

    has anyone tired to integrate ESET protect logs into Qradar? I found DSM for ESET remote administrator. But as I understand this is different module. 
    Maybe someone has already build custom DSM for ESET logs? Or maybe DSM for ESET remote administrator can be used?



    ------------------------------
    Andrius
    ------------------------------



  • 2.  RE: ESET protect log integration into Qradar

    Posted Mon June 05, 2023 04:47 AM

    Hi, 

    if any of you have same question ESET remote administrator was renamed to ESET protect. 

    IBM documentation is identical for both. 

    I found that DSM does not have mapping for all events, so keep in mind you will need to add custom parsing.



    ------------------------------
    Andrius
    ------------------------------

    Original Message