Installing QRadar EDR by using CASE
Install IBM® Security QRadar® EDR in an environment with internet connectivity by using the Container Application Software for Enterprises (CASE).
There are several prerequisite steps you must take before you install QRadar EDR by using CASE.
Install Windows Subsystem for Linux (WSL)
If you are using a Windows computer, you must install Windows Subsystem for Linux® (WSL).
For more information about installing WSL, see Install WSL.
Install Red Hat OpenShift CLI 4.14 or later
The Red Hat OpenShift CLI client helps you develop, build, deploy, and run your applications on any Red Hat OpenShift or Kubernetes cluster. It also includes the administrative commands for managing a cluster under the adm subcommand.
Procedure
Install Docker CLI 18.0.0 or later
If Docker is not available for your OS, install Podman CLI 1.4 or later instead
Procedure
Install Docker.
If you can't install Docker, install Podman.
Install Red Hat OpenShift
For the supported Red Hat OpenShift Container Platform versions, see ../planning/system_requirements.html.
For more information about installing and validating Red Hat OpenShift, see Setting up Red Hat OpenShift Container Platform cluster.
Install the IBM Catalog Management plug-in for Red Hat OpenShift CLI
The IBM Catalog Management plug-in simplifies the process for discovering required IBM product images and uses standard tooling for registry and cluster access.
Procedure
Gather the information needed to install QRadar EDR
Make sure you know the registry key and other information to successfully install QRadar EDR.
Information needed | Description |
---|---|
The IBM Entitled Registry key |
After you purchase a license for QRadar EDR, an entitlement for the Cloud Pak software is associated with your MyIBM account ID. You must have an entitlement key for the IBM Entitled Registry to install QRadar EDR by the online or air-gapped method that uses the IBM Entitled Registry. The value of the key is set in a parameter that is used during installation.
You need the IBM Entitled Registry key during the installation process and it must continue to be valid through the entire lifecycle of the platform. Important: If the IBM Entitled Registry key
becomes invalid, you must create a new key in Passport Advantage® from a valid account and replace the key on QRadar EDR. If you do not replace the key on QRadar EDR, services fail.
|
The Fully Qualified Domain Name (FQDN) chosen for the QRadar EDR application | The FQDN of the Red Hat OpenShift Container Platform cluster is used with the TLS certificate for the platform FQDN. You can choose to create a unique FQDN for the QRadar EDR platform if you don't want to use the Red Hat OpenShift Container Platform cluster FQDN. For more information about the FQDN requirements, see Domain name and TLS certificates. |
Certificate of Authority (CA), if required for the QRadar EDR application domain. | For more information about certificates, see Domain name and TLS certificates. |
The persistent storage and storage class to be used. | For more information about the persistent storage required for QRadar EDR, see Storage requirements. |
Installing QRadar EDR by using CASE
A CASE provides a package to configure multiple user roles to install, manage, and upgrade the software.