IBM Support

QRadar: Common two-factor authentication questions

Question & Answer


Question

Does QRadar® support two-factor authentication (2FA) to authenticate users?

Answer

QRadar® does not have any built-in configuration to set up two-factor authentication (2FA), nevertheless, integration through any of our supported authentication methods is valid.
To enable 2FA to authenticate users in QRadar®, the administrator must:
  1. Have an Identity Provider (IDP) integrated with any 2FA platform (DUO, OKTA, PING, etc).
  2. Integrate QRadar® and the IDP using the following authentication methods:
     
    • Remote Authentication Dial-in User Service (RADIUS) authentication.
    • Terminal Access controller Access Control System (TACACS) authentication. 
    • Lightweight Directory Access Protocol (LDAP).
    • Microsoft Active Directory - Users are authenticated by an LDAP server that uses Kerberos. (Deprecated in newer versions).
    • Security Assertion Markup Language (SAML).

[{"Type":"SW","Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSBQAC","label":"IBM Security QRadar SIEM"},"ARM Category":[{"code":"a8m0z000000cwsyAAA","label":"Admin Tasks"}],"ARM Case Number":"TS005386336","Platform":[{"code":"PF016","label":"Linux"}],"Version":"All Version(s)"}]

Document Information

Modified date:
06 May 2021

UID

ibm16448540