What's new or changed in QRadar Suite Software 1.11
See new or changed features and improvements that are available in the latest release of IBM Security QRadar® Suite Software.
Attention: To upgrade to QRadar Suite Software version 1.11, you must be on QRadar Suite Software
version 1.10.28.
1.11.2 (March 2025)
QRadar Suite Software- Relabel QRadar Suite Software domain and name
- You can relabel the QRadar Suite Software domain and name.
- Low code or no code enhancement
- When OpenAPI spec files have an unsupported function definition, previously they were rejected from an import. Now they are imported into SOAR, with UI messages showing that these functions are imported, but are disabled.
- allOf keyword is now supported in function definition. Additionally, long and double value are supported as connector function static inputs.
- SOAR Breach Response add-on
- The SOAR Breach Response add-on is updated.
1.11.1 (March 2025)
IBM Security SOAR- SOAR Breach Response add-on
- The SOAR Breach Response add-on is updated.
1.11.0 (December 2024)
QRadar Suite Software- Added support for IBM Cloud Pak® foundational services version 4.6
- QRadar Suite Software 1.11.0 now supports foundational services version 4.6.
- Middleware, currency, and compliance
- In QRadar Suite Software 1.11.0, CouchDB is deprecated and support is migrated to EDB Postgres.
- End of service for Risk Manager
- In QRadar Suite Software 1.11.0, Risk Manager is deprecated.
- Deprecated OpenLDAP and Red Hat® OpenShift® Kubernetes Service methods of authentication
- QRadar Suite Software no longer supports OpenLDAP and Red Hat OpenShift Kubernetes Service (ROKS) methods of authentication. After installation, you can choose to configure LDAP authentication, or to configure single sign-on between QRadar Suite Software and a Verify enterprise identity source.
- High availability is enabled by default
- For better performance and scalability, high availability is enabled by default for IBM Security SOAR.
- Add functions to SOAR playbooks with low code or no code
- From the playbook designer canvas, you can add the functions to your playbooks from a new
Functions > Connectors tab, without deploying apps to Edge Gateway.
Currently, only OpenAPI Spec 3.0 is supported for importing connector functions. Exporting or importing playbooks with connector functions is not supported currently and connector functions do not work in MSSP accounts.
- Export case artifacts
- You can export case artifacts to share indicators of compromise with external parties.
- Modernized Attachments table
- The Attachments table in the Incidents > Attachments tab and Tasks > Attachments tab is modernized.
- SOAR Breach Response add-on
- The SOAR Breach Response add-on is updated.
- Sanitize values for incident export
- You can configure the system to sanitize field values that start with particular characters in
case reports are exported to Excel. Prior to this change, the options were to export without
sanitizing the values, or to block exports of cases that included fields that start with these
values.
This feature is enabled by default for new installations. For upgrades to 1.11, you can configure this feature.