Hello M Pa,
It depends which QRadar product you are referring to. I'll try to answer your question for the following products: QRadar SIEM/NDR, QRadar SOAR
QRadar SIEM/NDR:
I have double checked the official IBM QRadar SIEM 7.5 Installation Guide (https://www.ibm.com/docs/en/SS42VS_7.5/pdf/b_siem_inst.pdf) and the official documentation (https://www.ibm.com/docs/en/qsip/7.5?topic=vai-creating).
Quick Answer to your question: Officially it is not supported/tested by IBM.
The official supported hypervisors are: VMWare ESXi with hardware version 13, KVM on CentOS or Red Hat Enterprise Linux V7.9 with QEMU KVM 1.5.3-141, Nutanix AHV with Acropolis Operating System (AOS)
Hardware platform support: x86
QRadar SIEM as it is today is not fully containerized. You could try installing it on your cluster with OpenShift Virtualization.
If you have spare resources on your OCP Cluster you could test installing it as a virtual appliance.
However I assume you could be more lucky with a software install as OCP Virtualization (Installing QRadar SIEM on top of RHEL).
QRadar SOAR
QRadar SOAR is fully containerized and available via the Cloud Pak for Security. You can install the Cloud Pak on your Cluster by following the following documentation and applying an eligible license-key as a secret in the cluster.
https://www.ibm.com/docs/en/cloud-paks/cp-security/1.10?topic=installing
Hope this helps to answer your question.
Kind Regards
Sejid
------------------------------
Sejid Canoski
Technical Presales Consultant/Architect
TD SYNNEX Germany GmbH & Co. OHG
Munich
------------------------------
Original Message:
Sent: Mon November 04, 2024 05:43 AM
From: M Pa
Subject: Install QRadar over RedHat OpenShift Container based platform
Hello SMEs,
Seeking your quick advice on Installing QRadar over RedHat OpenShift Container based platform. Does this support? if yes where to download containerized image from Fix Central. Any documentation available will be really helpful
------------------------------
M Pa
------------------------------