Global Security Forum

Security Global Forum

Our mission is to provide clients with an online user community of industry peers and IBM experts, to exchange tips and tricks, best practices, and product knowledge. We hope the information you find here helps you maximize the value of your IBM Security solutions.

 View Only
Back to discussions
Expand all | Collapse all

KASPERSKY INTEGRATION QRADAR ON-PREMISE

  • 1.  KASPERSKY INTEGRATION QRADAR ON-PREMISE

    Posted 6 days ago

    Hello Folks, 

    Any tips to integrate Kaspersy EDR to QRADAR on-premise, on kaspersky doc there is this integration steps: Connect KSC with SIEM (IBM QRadar)

    Kaspersky Support Forum remove preview
    Connect KSC with SIEM (IBM QRadar)
    I wanna export logs to my IBM Qradar SIEM solution in LEEF format , how to configure in KSC to connect with SIEM and how to configure connection in SIEM to integrate with KSC , can anyone explain in details. I am beginner in SIEM and KSC
    View this on Kaspersky Support Forum >

     

    By using LEEF communications, but on the qradar side I am unable to find a dsm that can be used. 

    Any tips will be very appreciated.

    Thank You,

    Kamal



    ------------------------------
    Mohammed Kamal MOULINE
    ------------------------------


Related Content