IBM®
QRadar® requires
that you use an authentication token for the main site and a separate authorized service token for
the destination site to authenticate the API calls made by the Data Synchronization app. Use the
Manage Authorized Services page on the Admin tab to
create an authorized service token for your main site and a second token for your destination
site.
- Log in to QRadar as the admin user.
- On the main QRadar Console, click .
- On the Manage Authorized Services window, click Add
Authorized Service.
-
Add the relevant information in the following fields:
- Ensure to create the authorization token as the admin user.
-
In the Service Name field, type a name for this authorized service. The
name can be up to 255 characters in length.
-
From the User Role list, select Admin.
-
From the Security Profile list, select the security profile to assign to
this authorized service. The security profile determines the networks and log sources that this
service can access on QRadar.
-
In the Expiry Date list, type or select the date for this service to
expire. If an expiry date is not necessary, select No Expiry.
- Click Create Service.
- In the Admin tab, click Deploy Changes to apply the
changes.
- Return to the Manage Authorized Services window, click the row that
contains the service token you created and copy the token string from the Selected
Token field.
This token is used when you are completing the settings for the
main site and the destination site.
- Repeat steps 2 - 5 to create a second authorized service token for the destination
site.
-
Close the Manage Authorized Services window.