Creating authorized service tokens
You must create authorized service tokens to authenticate the background services that the QRadar® Advisor with Watson™ app uses to request data from your local instance of IBM® QRadar.
Before you begin
QRadar on Cloud administrators can learn how to add and manage authorized service tokens by reading https://www.ibm.com/support/knowledgecenter/SSKMKU/com.ibm.qradar.doc/c_qrocss_manageauthservices.html.
If you’re a QRadar on Cloud customer, contact Customer Support to create an authorized service token for you.
About this task
IBM QRadar requires that you use authentication tokens to authenticate the API calls that the app makes. Use the Manage Authorized Services window to create authentication tokens.
You must have QRadar
administrator privileges to create authorized service tokens.
Important: After you
submit the authorized service tokens, you must deploy changes for the new authorized service tokens
to take effect.
Attention: You can create an admin token and a limited access token for the QRadar Advisor with Watson app.
- The admin token must be assigned to a role with admin permissions.
- In order for the limited access user to use QRadar Advisor with Watson to analyze
offenses, the limited access token must be assigned a user role with the following permissions:
- Network Activity
- Log Activity
- QRadar Advisor with Watson
- Define Network Hierarchy under Delegated Administration
- View VA Data under Assets
- View Custom Rules under Offenses