IBM QRadar

IBM QRadar

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only
Back to discussions
Expand all | Collapse all

QRadar Incident Forensics - PCAP Upgrade path

  • 1.  QRadar Incident Forensics - PCAP Upgrade path

    Posted Fri September 20, 2019 11:39 AM
    Hi,

    We are planning upgrade the Qradar SIEM deployment to the 7.3.2 version, and we need to clarify, what is correct upgrade path for the Qradar Pcap Appliance to work with 7.3.2 Qradar SIEM and QRIF.
    The model of the appliance is X3650 M4 - MT 5466 with the current version 7.3.1-QRadar-PCAP-Build-320.

    Thank you.
    Best Regards,

    ------------------------------
    Pedro
    ------------------------------


  • 2.  RE: QRadar Incident Forensics - PCAP Upgrade path

    Posted Mon September 30, 2019 11:26 AM
    Edited by Jeremy Goldstein Mon September 30, 2019 02:23 PM
    Hi Pedro,

    I just checked with my colleague but my understanding is that there is no 7.3.2 ISO for QRadar PCAP.  Instead customers should use the latest 7.3.1 ISO and then patch up to 7.3.2 using the SFS file.  For QRadar Packet Capture, the version does not need to be the same as the version for the QRadar deployment. 

    Hope this helps!

    Best,
    Jeremy

    ------------------------------
    Jeremy Goldstein
    Product Marketing Manager
    IBM QRadar
    ------------------------------

    Original Message


Related Content