Question & Answer
Question
Does QRadar® support two-factor authentication (2FA) to authenticate users?
Answer
QRadar® does not have any built-in configuration to set up two-factor authentication (2FA), nevertheless, integration through any of our supported authentication methods is valid.
To enable 2FA to authenticate users in QRadar®, the administrator must:
- Have an Identity Provider (IDP) integrated with any 2FA platform (DUO, OKTA, PING, etc).
- Integrate QRadar® and the IDP using the following authentication methods:
- Remote Authentication Dial-in User Service (RADIUS) authentication.
- Terminal Access controller Access Control System (TACACS) authentication.
- Lightweight Directory Access Protocol (LDAP).
- Microsoft Active Directory - Users are authenticated by an LDAP server that uses Kerberos. (Deprecated in newer versions).
- Security Assertion Markup Language (SAML).
Related Information
[{"Type":"SW","Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSBQAC","label":"IBM Security QRadar SIEM"},"ARM Category":[{"code":"a8m0z000000cwsyAAA","label":"Admin Tasks"}],"ARM Case Number":"TS005386336","Platform":[{"code":"PF016","label":"Linux"}],"Version":"All Version(s)"}]
Was this topic helpful?
Document Information
Modified date:
06 May 2021
UID
ibm16448540