Message Image

Log in

Skip to main content (Press Enter).

Skip auxiliary navigation (Press Enter).

IBM Security

Join our 16,000+ members as we work together to
overcome the toughest challenges of cybersecurity.

Start collaborating

Join us for IBM TechXchange Day: AI and Automation

Skip main navigation (Press Enter).

IBM Security QRadar

View Only

Expand all | Collapse all

CrowdStrike Falcon FileVantage logs to QRadar

Edgar Faria28 days ago

Hi all, Does anyone know if it is possible to send CrowdStrike Falcon FileVantage logs to QRadar? ...

Comghall Morgan36 minutes ago

Hello, I do not see any current support for this at present: As per the DSM guides: https://www.ibm.com/docs/en/dsm?topic=configuration-qradar-supported-dsms ...

1. CrowdStrike Falcon FileVantage logs to QRadar

0 Like
Edgar Faria
Posted 28 days ago

Reply
Hi all,

Does anyone know if it is possible to send CrowdStrike Falcon FileVantage logs to QRadar?

Best Regards.

------------------------------
Edgar Faria
------------------------------
2. RE: CrowdStrike Falcon FileVantage logs to QRadar

0 Like
Comghall Morgan
Posted 36 minutes ago
Edited by Comghall Morgan 35 minutes ago

Reply
Hello,

I do not see any current support for this at present:
As per the DSM guides:
https://www.ibm.com/docs/en/dsm?topic=configuration-qradar-supported-dsms

When a device is not officially supported, you have the following options:

Open a request for enhancement (Now IBM Ideas) to have your device become officially supported.

Go to the QRadar SIEM RFE page (https://ibm.biz/BdRPx5).

You can follow the technote as well.

https://www.ibm.com/support/pages/qradar-requesting-new-features-ibm-ideas
rasing the idea under 'QRadar Integrations - Device Support Modules (DSMs), Scanners, Rules, and Reports'

Regards,

------------------------------
Comghall Morgan
QRadar Support Architect
IBM
------------------------------

Original Message

Powered by Higher Logic