IBM Security QRadar

Got to integrate osisoft and sap oracle log sources to my qradar va.
my question is the following:
It is enough for me to activate syslog on two osisoft and sap oracle appliances that is where they are installed, and then I install DSMs of these in qradar console (in the case dsm there aren't, I should create the udsm for both) and everything should work, or the process to communicate them with qradar console is another?
anyone can clear my head up?

------------------------------
Paul
------------------------------

Hi Paul,

I am not familiar with these technologies yet. I would first check if there is a supported DSM for these appliances because some DSMs sometimes use different methods and protocols to recieve events. If not and as you say and if they support syslog forwarding, should be enough for you to get events via syslog in QRadar.
Just one thing to make sure is there log source identifier in the syslog headers in the payload.
​

------------------------------
Chinmay Kulkarni
------------------------------

Original Message:
Sent: Sat October 12, 2019 05:50 AM
From: Paul
Subject: LOG SOURCES

Got to integrate osisoft and sap oracle log sources to my qradar va.
my question is the following:
It is enough for me to activate syslog on two osisoft and sap oracle appliances that is where they are installed, and then I install DSMs of these in qradar console (in the case dsm there aren't, I should create the udsm for both) and everything should work, or the process to communicate them with qradar console is another?
anyone can clear my head up?

------------------------------
Paul
------------------------------