IBM Qradar

IBM® QRadar® is a network security management platform that provides situational awareness and compliance support. QRadar uses a combination of flow-based network knowledge, security event correlation, and asset-based vulnerability assessment.

  1. Open Dashboard Designer.

  2. In the navigation pane, go to Connector & Sources > Connector Sources.

  3. In the Connector Sources tab, click Add Source. An Add Connector Source window is displayed.

  4. From the Connector Type list, select QRadar connector.

  5. In the Connector Source Name field, enter a name for QRadar source.

  6. Source name can contain alphanumeric characters and underscores.

  7. In the Endpoint URL field, enter URL details for QRadar web service in the following format: https://console.clouddefenseai.com/api-v2/integrations/application/584174528

  8. Above API endpoint requires Application ID in end, to get list of all vulnerabilities, you also need to send 1 header with key “apikey” and you can obtain your api key from - https://console.clouddefenseai.com/profile-management

For more detailed information, check Qradar’s official documentation - https://www.ibm.com/docs/en/cabi/1.1.2?topic=products-configuring-qradar-connector-sources

Last updated