Creating an authorized service token

IBM® QRadar® requires that you use an authentication token for the main site and a separate authorized service token for the destination site to authenticate the API calls made by the Data Synchronization app. Use the Manage Authorized Services page on the Admin tab to create an authorized service token for your main site and a second token for your destination site.

  1. Log in to QRadar as the admin user.
  2. On the main QRadar Console, click Admin > Authorized Services.
  3. On the Manage Authorized Services window, click Add Authorized Service.
  4. Add the relevant information in the following fields:
    1. Ensure to create the authorization token as the admin user.
    2. In the Service Name field, type a name for this authorized service. The name can be up to 255 characters in length.
    3. From the User Role list, select Admin.
    4. From the Security Profile list, select the security profile to assign to this authorized service. The security profile determines the networks and log sources that this service can access on QRadar.
    5. In the Expiry Date list, type or select the date for this service to expire. If an expiry date is not necessary, select No Expiry.
    6. Click Create Service.
    7. In the Admin tab, click Deploy Changes to apply the changes.
  5. Return to the Manage Authorized Services window, click the row that contains the service token you created and copy the token string from the Selected Token field.
    This token is used when you are completing the settings for the main site and the destination site.
  6. Repeat steps 2 - 5 to create a second authorized service token for the destination site.
  7. Close the Manage Authorized Services window.