IBM QRadar

IBM QRadar

Join this online topic group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only

  • 1.  Local Authentication Fallback

    Posted Mon March 23, 2020 04:29 AM
    Hello everyone,

    I have a question about Local Authentication Fallback feature when creating a new user in QRadar 7.3.2 patch 6.

    We have created 2 new user, one is admin role, other one is not, and both are contained in Active Directory. 

    Admin-role user is not able to login to QRadar when Local Authentication Fallback is disabled,
    Not Admin-role user is able to login to QRadar when Local Authentication Fallback is disabled at the same time.

    I am thinking that Local Authentication Fallback is used for when LDAP is not accessible for login to QRadar.

    However, is it must for all admin users to be enabled Local Authentication Fallback for login? (even if LDAP is not inaccessible)?

    If not, why is this happening?

    Thank you in advance.

    ------------------------------
    Halil BALIM
    ------------------------------


  • 2.  RE: Local Authentication Fallback

    Posted Mon March 23, 2020 04:21 PM
    This document gives some clue when we should use Local Authentication Fallback for login. As you say if the AD is not reacheable for some reason local authC fallback help us to reach the qradar management interface. I am creating user with non-admin role then deploying change after all I change the user from non-admin role to admin role.
    Hope this help.

    ------------------------------
    Hasan Erhan AYDINOĞLU
    ------------------------------



Related Content