Configuring Blue Coat Web Security Service to communicate with QRadar

To collect events from Blue Coat Web Security Service, you must create an API key for IBM QRadar. If an API key exists, Blue Coat Web Security Service is already configured.

Procedure

  1. Log in to the Blue Coat Threat Pulse portal.
  2. Switch to Service mode.
  3. Click Account Maintenance > MDM, API Keys.
  4. Click Add API key, type a user name and password for the API key, and then click Add.

    You need the user name and password when you configure the log source for the API.