Raz-Lee iSecurity
IBM QRadar collects and parses Log Event Extended Format (LEEF) events that are forwarded from Raz-Lee iSecurity installations on IBM i. The events are parsed and categorized by the IBM i DSM.
QRadar supports events from Raz-Lee iSecurity installations for iSecurity Firewall V15.7 and iSecurity Audit V11.7.
The following table describes the specifications for the IBM i DSM for Raz-Lee iSecurity
installations:
| Specification | Value |
|---|---|
| Manufacturer | IBM® |
| DSM name | IBM i |
| RPM file name | DSM-IBMi-QRadar_version-build_number.noarch.rpm |
| Supported versions |
iSecurity Firewall V15.7 iSecurity Audit V11.7 |
| Protocol | Syslog |
| Event format | LEEF |
| Recorded event types | All security, compliance, firewall, and audit events. |
| Automatically discovered? | Yes |
| Includes identity? | Yes |
| Includes custom properties? | No |
| More information | IBM website (http://www.ibm.com) |