SNMPv2 log source parameters for Trend Micro Apex One

If QRadar does not automatically detect the log source, add a Trend Micro Apex One log source on the QRadar Console by using the SNMPv2 protocol.

When using the SNMPv2 protocol, there are specific parameters that you must use.

The following table describes the parameters that require specific values to collect SNMPv2 events from Trend Micro Apex One:
Table 1. SNMPv2 log source parameters for the Trend Micro Apex One DSM
Parameter Value
Log Source type Trend Micro Office Scan
Log Source Description A description for the log source.
Protocol Configuration SNMPv2
Log Source Identifier The IP address or host name for the log source can be used as an identifier for events from your Trend Micro Apex One appliance.
Community The SNMP community name that is required to access the system that contains SNMP events. The default is Public.
Include OIDs in Event Payload

If selected, clear the Include OIDs in Event Payload check box.

This option allows the SNMP event payload to be constructed by using name-value pairs instead of the standard event payload format. Including OIDs in the event payload is required for processing SNMPv2 or SNMPv3 events from certain DSMs.

For a complete list of SNMPv2 protocol parameters and their values, see SNMPv2 protocol configuration options.