Message Image

Log in

Skip to main content (Press Enter).

Skip auxiliary navigation (Press Enter).

IBM Security Join our 16,000+ members as we work together to overcome the toughest challenges of cybersecurity. Join the Community

Skip main navigation (Press Enter).

IBM Security QRadar

View Only

Expand all | Collapse all

Qradar on Cloud

K KFri June 26, 2020 06:50 AM

Hi All, I would like to understand can we use MSRPC protocol to collect the Windows server event logs ...

COLIN HAYMon June 29, 2020 10:30 AM

Hi Karthick, Yes the MSRPC protocol should work fine in a QRadar on Cloud environement. If you configure ...

1. Qradar on Cloud

0 Like
K K
Posted Fri June 26, 2020 06:50 AM

Reply
Hi All,

I would like to understand can we use MSRPC protocol to collect the Windows server event logs in Qradar on Cloud please ? Because in an article it is mentioned that we wont be able to use managed version of Wincollect agent hence i am not sure does Qradar on Cloud support RPC protocol ?

Regards,
Karthick

------------------------------
Karthick Krishnamoorthy
------------------------------
2. RE: Qradar on Cloud

0 Like
COLIN HAY
Posted Mon June 29, 2020 10:30 AM

Reply
Hi Karthick,

Yes the MSRPC protocol should work fine in a QRadar on Cloud environement. If you configure it to run on a Data Gateway it can collect the Windows events from the local on-prem Windows systems.

Cheers
Colin

------------------------------
COLIN HAY
IBM Security
------------------------------

Original Message

Powered by Higher Logic