Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.
I have a NAS storage ONTAP so I want to send its log files to qradar
What is the best practice to do this ?
if your device has a Supporteded DSM for QRadar, you can integrate as per DSM guide:
https://www.ibm.com/support/knowledgecenter/SS42VS_DSM/com.ibm.dsm.doc/r_supported_dsm_list.html
I know there is DSM for NetApp ONTAP where the source uses syslog protocol to send events to QRadar
DSM Guide: https://www.ibm.com/support/knowledgecenter/SS42VS_DSM/com.ibm.dsm.doc/b_dsm_guide.pdf?view=kc&origURL=SS42VS_DSM/b_dsm_guide.pdf