ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.
Does Top Secret for VSE have a QRadar API interface?
Article ID: 103481
Updated On:
Products
Top Secret - VSE
Issue/Introduction
Need to use QRadar to perform some auditing and compliance metrics. Does CA Top Secret for VSE have a API or database interface for QRadar from IBM?
Environment
Release: TOPSEC00100-3.0-Top Secret-Security
Component:
Component:
Resolution
CA Top Secret for VSE does not have any built in API that interfaces with CA Top Secret Auditing and logging.
You can run a TSSUTIL EXTRACT job to extract the audit records from the CA Top Secret Audit Tracking File and put it in a dataset.
At that point they can use QRadar to extract the info or build a database from it.
TSSUTIL is batch. There is no realtime.
If you were a z/OS customer, TSS for z/OS has a Compliance Event Manager which is exactly what you would need. It basically dumps security records into a database so you can run queries on it.
There is no z/VSE version and none planned in the future.
You can run a TSSUTIL EXTRACT job to extract the audit records from the CA Top Secret Audit Tracking File and put it in a dataset.
At that point they can use QRadar to extract the info or build a database from it.
TSSUTIL is batch. There is no realtime.
If you were a z/OS customer, TSS for z/OS has a Compliance Event Manager which is exactly what you would need. It basically dumps security records into a database so you can run queries on it.
There is no z/VSE version and none planned in the future.
Feedback
Yes
No
Powered by
