IBM QRadar

IBM QRadar

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only
Back to discussions
Expand all | Collapse all

IBM QRadar SIEM - Tenable.io Integration in order to Retrieve Vulnerability Scan Results from Tenable.io to QRadar SIEM

  • 1.  IBM QRadar SIEM - Tenable.io Integration in order to Retrieve Vulnerability Scan Results from Tenable.io to QRadar SIEM

    Posted Fri October 22, 2021 03:39 PM

    Hello,

    We try to integrate Tenable.io with IBM QRadar SIEM via the application developed by Tenable(app version 2.0.0).

    We choose a completed scan on Tenable.io and configure it with the API information on QRadar, and save the changes. It gives a response like "configuration completed successfully".

    After saving changes, we expect QRadar to start retrieving completed scan results from Tenable.io with the information provided in the application interface and enrich the asset information in the QRadar SIEM-Assets tab. However, we are not able to find information about any process or result neither on the QRadar SIEM system nor on the Tenable.io site.

    Do you have any experience or information about retrieving scan results from Tenable.io to QRadar SIEM so as to enrich asset information?

    Kind regards.



    ------------------------------
    Hasan Keskin
    ------------------------------


  • 2.  RE: IBM QRadar SIEM - Tenable.io Integration in order to Retrieve Vulnerability Scan Results from Tenable.io to QRadar SIEM

    Posted Fri October 22, 2021 06:17 PM
    Hi Hasan 

    Please check below for your reference. 
    https://www.ibm.com/docs/en/dsm?topic=guide-nessus-scanner-overview

    ------------------------------
    Brian Kwak
    ------------------------------

    Original Message