Hi All,

We  are trying to integrated Cortex xdr (cloud based) and IBM Qradar (cloud based)., We need to understand the communication part.

We have 3 on primes data gateways which forwards logs to Qradar.


Please assist,


Regards
Asif Siddiqui

------------------------------
Asif Siddiqui Senior Security Analyst
------------------------------

best bet would be to install Cortex xdr app:

here is the link:

https://exchange.xforce.ibmcloud.com/hub/extension/d12c3794f142ee334b4bbdc83d10347f

This app is cloud ready, that means can be installed on QRoC

------------------------------
Ashish Khandewale
------------------------------

Original Message:
Sent: Tue June 22, 2021 03:28 AM
From: Asif Siddiqui
Subject: How to integrate Qradar and Cortex anti virus

Hi All,

We  are trying to integrated Cortex xdr (cloud based) and IBM Qradar (cloud based)., We need to understand the communication part.

We have 3 on primes data gateways which forwards logs to Qradar.


Please assist,


Regards
Asif Siddiqui

------------------------------
Asif Siddiqui Senior Security Analyst
------------------------------

Sorry, but the only way I was able was to use the Universal Cloud Connect App to pull data from the XDR Data Lake.

The "app" that was mentioned above didn't help

------------------------------
BrunoMarX
------------------------------

Original Message:
Sent: Mon December 13, 2021 10:51 AM
From: Ashish Khandewale
Subject: How to integrate Qradar and Cortex anti virus

best bet would be to install Cortex xdr app:

here is the link:

https://exchange.xforce.ibmcloud.com/hub/extension/d12c3794f142ee334b4bbdc83d10347f

This app is cloud ready, that means can be installed on QRoC

------------------------------
Ashish Khandewale

Original Message:
Sent: Tue June 22, 2021 03:28 AM
From: Asif Siddiqui
Subject: How to integrate Qradar and Cortex anti virus

Hi All,

We  are trying to integrated Cortex xdr (cloud based) and IBM Qradar (cloud based)., We need to understand the communication part.

We have 3 on primes data gateways which forwards logs to Qradar.


Please assist,


Regards
Asif Siddiqui

------------------------------
Asif Siddiqui Senior Security Analyst
------------------------------

Hi Asif , Please can I comment if you integrated CORTEX with QRoC? we have the same problem

Thank you for your comments.

Regards

Jorge Torres 

------------------------------
JORGE ALBERTO TORRES BAUTISTA
------------------------------

Original Message:
Sent: Tue June 22, 2021 03:28 AM
From: Asif Siddiqui
Subject: How to integrate Qradar and Cortex anti virus

Hi All,

We  are trying to integrated Cortex xdr (cloud based) and IBM Qradar (cloud based)., We need to understand the communication part.

We have 3 on primes data gateways which forwards logs to Qradar.


Please assist,


Regards
Asif Siddiqui

------------------------------
Asif Siddiqui Senior Security Analyst
------------------------------