IBM QRadar

IBM QRadar

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only
Back to discussions
Expand all | Collapse all

Symantec EDR integration with QRadar

  • 1.  Symantec EDR integration with QRadar

    Posted Tue June 14, 2022 08:01 AM

    Hello,

    Has anyone worked with Symantec EDR? I would like to know which integration is the best: using the Symantec EDR app (which makes API calls to the Symantec server) or simply by using syslog ?

    any recommendations?

    Thanks



    #QRadar
    #Support
    #SupportMigration


  • 2.  RE: Symantec EDR integration with QRadar

    Posted Thu August 11, 2022 11:07 AM

    I have such a problem with I have logs sent from SymantecEDR and no DSM parses it. So I would also like to know the best way.



    #QRadar
    #Support
    #SupportMigration