IBM QRadar

View Only

Richard Diring posted Mon December 09, 2024 01:32 PM

Running on prem storage. Not looking to move to cloud storage, as not within budget.

Need to clear out the export queue after two days, but unable to find where such configuration can be made.

Submitted ticket to IBM, and was told would have to contact IBM Expert Labs. That led me to this forum link.

John Dawson posted Tue December 10, 2024 12:27 PM

Hi Richard

The exports should be in a /store/exports folder

You may be able to use a standard linux command such as

find /store/exports/* -mtime +2 -exec rm {} \;To remove files older than 2 days. You could then add a cron job so this would run nightly.

This however would need to be tested.

Thanks

Discover these carefully selected resources to dive deeper into your journey and unlock fresh insights

If you need immediate assistance please contact the Community Management team

Monday - Friday: 8AM - 5 PM MT

Related Content