Skip to main content
Skip table of contents

IBM QRadar

What is IBM QRadar ?

IBM QRadar is a network security management platform that provides situational awareness and compliance support. QRadar uses a combination of flow-based network knowledge, security event correlation, and asset-based vulnerability assessment.

Why Should You Use the IBM QRadar Connector?

The IBM QRadar connector provides visibility into the assets and users in your environment. You can use this visibility to:

  • ensure assets are managed per your security policies

  • ensure assets are managed per your security policies

  • ingest assets and users and their relationships

How Does This Connector Work?

Lucidum executes read-only requests to the IBM QRadar REST API and ingests only meta-data about IBM QRadar devices. Lucidum does not retrieve any data stored on your assets.

Configuring the Connector in Lucidum

Field

Description

Example

URL

The URL for the IBM QRadar API.

http://ip_address/api

Username

User name for an IBM QRadar account with read access.

 justynmutts

Password

The password for the IBM QRadar account.

 ************

Verify SSL.

For future use.

N/A

Source Documentation

Creating Credentials

Contact your Lucidum Sales Representative for help with creating credentials.

Required Permissions

Contact your Lucidum Sales Representative for help with permissions.

API Documentation

https://www.ibm.com/docs/en/qradar-common?topic=api-endpoint-documentation-supported-versions

https://ibmsecuritydocs.github.io/qradar_api_overview/

https://ibmsecuritydocs.github.io/qradar_api_17.0/

https://github.com/IBM/api-samples/blob/master/asset_model/01_GetAssets.py

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close