Raz-Lee iSecurity
IBM QRadar collects and parses Log Event Extended Format (LEEF) events that are forwarded from Raz-Lee iSecurity installations on IBM i. The events are parsed and categorized by the IBM i DSM.
QRadar supports events from Raz-Lee iSecurity installations for iSecurity Firewall V15.7 and iSecurity Audit V11.7.
The following table describes the specifications for the IBM i DSM for Raz-Lee iSecurity
installations:
Specification | Value |
---|---|
Manufacturer | IBM® |
DSM name | IBM i |
RPM file name | DSM-IBMi-QRadar_version-build_number.noarch.rpm |
Supported versions |
iSecurity Firewall V15.7 iSecurity Audit V11.7 |
Protocol | Syslog |
Event format | LEEF |
Recorded event types | All security, compliance, firewall, and audit events. |
Automatically discovered? | Yes |
Includes identity? | Yes |
Includes custom properties? | No |
More information | IBM website (http://www.ibm.com) |