QRadar 7.3.2 has launched

Download QRadar 7.3.2 Patch 2 from IBM Fix Central to access new features and upgrade your deployment to our latest version.

What is new in QRadar v7.3.2?

  • App Host appliances are replacing App Nodes
  • Security Assertion Markup Language (SAML) 2.0 support
  • Disconnected Log Collectors (DLC)
  • View the AQL query for any search in QRadar using the new ‘Show AQL’ function
  • Log source auto detection for custom log types created in the DSM Editor
  • New LEEF and CEF property detection for custom log source types
  • LEEF and CEF Custom Property Extraction
  • Data obfuscation for multitenant environments
  • VLAN segmentation for multitenant environments
  • Enhanced clarity into MPLS flows from IPFIX data
  • Enhanced Content Management for uninstalled Applications
  • Incremental (Stackable) EPS/FPM Licensing
  • DrQ Health Check Framework
  • Rule Performance Visualization
  • New API v10 available for users

Getting Ready to Upgrade:

The update to version 7.3.2 requires that the existing deployment be installed with QRadar 7.3.x (7.3.0 or 7.3.1 any patch version). Administrators on a QRadar 7.3.x version can use the SFS file from IBM Fix Central to update their deployment to QRadar 7.3.2. It is important that administrators ensure that their appliances are updated to the latest version before you begin an upgrade. Administrators who are on the latest version of the QRadar Assistant App can use the app to identify applications that have newer versions available.

QRadar 7.3.x admins, download the Patch 2 SFS to upgrade
To install an App Host, download the QRadar 7.3.2 Patch 2 ISO

I’m using QRadar on Cloud, will I get the 7.3.2 Patch 2 update?

Yes. Administrators who are using QRadar on Cloud should receive an update email from IBM. Our QRadar on Cloud DevOps team notifies the QRadar on Cloud administrative contact via email to inform them of their scheduled maintenance window. If you are a QRadar on Cloud administrator, you have already received the email to outline when your 7.3.2 Patch 2 software update is scheduled.

What if I’m on QRadar 7.2.8?

Administrators who are on QRadar 7.2.8 must first upgrade to QRadar 7.3.1 using the ISO file, then update to QRadar 7.3.2 Patch 2 using the SFS.

1. QRadar 7.2.8 admins, upgrade to 7.3.1 now
2. Install the 7.3.2 Patch 2 SFS

Do I install QRadar 7.3.2 GA or 7.3.2 Patch 2?

QRadar 7.3.2 Patch 2 is the support recommended installation. Administrators who are completing software updates should apply the QRadar 7.3.2 Patch 2 update. Administrators should schedule an update to QRadar 7.3.2 Patch 2 during a maintenance window to ensure they have a baseline software install that matches up to an available ISO on IBM Fix Central.

Visit some of our other Support 101 Pages created specifically to assist customers in answering questions and reach a faster resolution to QRadar topics. We continually work to add more content to deliver value to our customers. These topics can be accessed from any of the QRadar 101 pages top menu bar.