Before you can configure the IBM®
QRadar® Use Case Manager app, you must create an
authorized service token.
About this task
IBM
QRadar on Cloud administrators can
learn how to add and manage authorized service token by reading Authorized service tokens. If you're a QRadar on
Cloud customer, contact Customer
Support to create an authorized service token for you.
Procedure
-
On the QRadar
Console, click
.
-
In the Authorized Service Management page, click
Add.
-
Add the relevant information in the following fields:
-
In the Authorized Service Label field, type a name for this authorized
service. The name can be up to 255 characters in length.
-
From the Security Profile list, select the security profile that you
want to assign to this authorized service. The security profile determines the networks and log
sources that this service can access on the QRadar Console.
-
From the User Role list, select the Admin user
role.
Tip: If you're using QRadar Use Case
Manager on IBM
QRadar on Cloud, you must use a SaaS Admin token,
and assign the Security Administrator role to your administrative users.
-
In the Expiry Settings section, type or select a date that you want this
service to expire. If an expiry date is not necessary, switch expiry toggle
Off.
-
Click Save.
Copy the authorized service token to a text editor for secure storage. The token cannot
be made visible after you close the dialog.
-
Copy the token string into the Authorized Service Token field in the
Settings page of QRadar Use Case
Manager and click
Submit.
-
On the Admin page, click Deploy Changes so that
the new token works with the app.