Skip Navigation
DOCS HOME
CYLANCE POWERED SECURITY
Cylance Endpoint Security
CylanceGUARD
CylanceHYBRID
CylanceON-PREM
Cylance Multi-Tenant Console
Cylance Engine
CylanceV
Cylance Application for QRadar
Cylance Application for Splunk
ENDPOINT MANAGEMENT
BlackBerry UEM
BlackBerry UEM Client
BlackBerry Enterprise Mobility Server
BlackBerry Analytics
CylancePROTECT Mobile for UEM
SDK: BlackBerry Web Services for BlackBerry UEM
BLACKBERRY DYNAMICS
BlackBerry Access
BlackBerry Bridge
BlackBerry Connect
BlackBerry Edit
BlackBerry Notes
BlackBerry Tasks
BlackBerry Work
SDK: BlackBerry Dynamics
SDK: BlackBerry Dynamics Launcher SDK
Security and Architecture
MORE PRODUCTS
Identity, Communication, and Collaboration
BlackBerry 2FA
BBM Enterprise
BlackBerry Enterprise ID
BlackBerry Org Connect
BlackBerry Workspaces
Development Tools
BlackBerry Dynamics Launcher SDK
BlackBerry Dynamics SDK
BlackBerry Web Services for BlackBerry UEM
BlackBerry Workspaces SDK
Critical Event Management
BlackBerry AtHoc
×
BlackBerry Extension for IBM QRadar
3.0.2
Administration Guide
Get the PDF
What is the BlackBerry Extension for QRadar?
Custom content
Custom properties
Log sources
Install the extension
Create the Application ID and Application Secret
Application privileges
Syslog configuration in the Cylance console
Get the reports prefix URL and token
Configure the BlackBerry extension for QRadar
Syslog configuration in the QRadar console
Use the dashboard
Fix saved searches in the dashboard
Use the sample Pulse dashboard
Cylance dashboard descriptions
Specify Device
Threat Remediation
Exploits Information
Configuration and miscellaneous
Action Log
Global List Actions
Threat Info Center
Get CylanceOPTICS event details
CylanceOPTICS detection event details
Zone interactions
Update a zone
Policy summary
Create a policy
Policy settings
Policy JSON view
Overview report
Daily reports
Use Log Activity
Troubleshooting
Syslog consumption
Cylance application
BlackBerry Docs
Cylance products
BlackBerry Extension for QRadar
What is the BlackBerry Extension for QRadar?
Log sources
Log sources
This extension comes with two log sources, one for live tenants and one for local replay (if needed).
The live tenant parses a TLS syslog feed
The local replay parses manually supplied syslogs
Section:
What is the BlackBerry Extension for QRadar?