question

VinodBLR-7626 avatar image
0 Votes"
VinodBLR-7626 asked Garth answered

Defender events farword to Qradar

How to Integrate Defender AV Events to Qradar and Defender is handled by SCCM managed console.

  1. After integrate defender What all events will forward ?

  2. Is this real-time event forward?


mem-cm-general
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

Garth avatar image
0 Votes"
Garth answered

This question is better suited for qradar. They know how qradar works and therefore how it Should be setup yo integrates with cm.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.