IBM QRadar

 View Only

 Add Virus Total Plugin Issue

Osama Ahmed's profile image
Osama Ahmed posted Tue December 31, 2024 04:55 AM

Hi All,

I'd like to add a plugin to the Offenses tab to check and analyse IP reputation, but when I go to the admin tab and search for QVTI VirusTotal, then open the App and put in API key, I get this The problem has to be faced. I am trying to insert API key in QVTI Virustoal field but facing Authentication token Invalid. After that I generated a new token but the problem is the same. please anyone can assist me & thanks in advance.

Regards,

Osama Ahmed

Comghall Morgan's profile image
Comghall Morgan posted Wed January 01, 2025 09:20 AM

Hello, 
We would need to see the logs for the App to try an identify what exactly is being rejected. 
Are you sure that the authentication token you are using has been created and is visible from the Admin page of QRadar UI :
Admin -> Authorized Services.
Also has the token got admin permissions. 
Regards,

Osama Ahmed's profile image
Osama Ahmed posted Thu January 02, 2025 12:15 AM

Hi,

Yes I'm sure and I have an admin account that I access.

Please find logs mentioned in below 

Related Content