IBM QRadar Services - Overview (O11)

Stable version 1.0.0 (Compatible with OutSystems 11)

Uploaded

on 1 Nov (yesterday)

0.0

(0 ratings)

Details

OutSystems to IBM QRadar SIEM Integration – Syslog over TLS Extension This extension enables OutSystems applications to securely forward logs and events to IBM QRadar SIEM using Syslog over TLS (RFC 5425). It provides a lightweight and reliable way to send LEEF 2.0-formatted events from any OutSystems environment directly into QRadar Cloud (QRoC) or on-prem deployments for centralized monitoring, compliance, and threat analysis. The extension establishes a secure, encrypted connection (typically port 6514) and performs standard certificate validation to ensure message integrity. It also includes diagnostic capabilities for testing connectivity and TLS handshake results. Ideal for enterprises seeking to connect OutSystems platform activity, audit, and security events with their existing SIEM pipeline—without deploying intermediate gateways or additional services. Key Features: 1) Sends Syslog messages using TLS 1.2+ as per RFC 5425. 2) Fully compatible with LEEF 2.0 format. 3) Configurable host, port, and timeout values. 4) Provides connectivity diagnostic action. 5) Simple integration through standard OutSystems logic flows. 6) Designed for cloud and self-managed OutSystems environments.

Overview

This component provides a direct and secure channel for transmitting OutSystems-generated events to IBM QRadar SIEM, ensuring visibility of critical logs within enterprise-wide monitoring dashboards. The extension is ideal for security and compliance teams that need encrypted log forwarding from OutSystems Cloud or on-prem installations to QRadar.

Core Capabilities

SendOneTLS
Establishes a secure Syslog/TLS session and transmits a single LEEF 2.0 event to QRadar’s collector (default port 6514).
- Inputs: Host, Port, Message, ConnectTimeoutMs, SendTimeoutMs.
- Output: Text result (“OK” or error detail).
- Implements RFC 5425 framing and UTF-8 encoding.
DiagnoseTlsConnect
Performs DNS resolution, TCP connect, and TLS handshake validation to verify network reachability and certificate trust. Returns detailed diagnostic text for troubleshooting firewall or certificate issues.

Message Format

Events must follow LEEF 2.0 conventions, for example:

LEEF:2.0|Damco|DamcoWorks|1.0.0|user.login|sev=5    msg=Login success    user=jdoe    app=DamcoWorks

Benefits

Seamless integration between OutSystems and QRadar SIEM.
Secure end-to-end encrypted log transmission.
Helps meet audit, SOC 2, and ISO 27001 compliance requirements.
Enables centralized correlation of application-level and infrastructure logs.
Lightweight, no external proxy or third-party dependency.

Requirements

Network access from OutSystems runtime to QRadar’s Syslog TLS endpoint (6514).
QRadar log source configured to accept LEEF format over TLS.

Typical Use Cases

Forwarding application, integration, or authentication events to SIEM.
Real-time anomaly or threat detection from OutSystems activity.
Unified compliance reporting and centralized audit logging.

Release notes (1.0.0)

License (1.0.0)

BSD-3 license (https://opensource.org/licenses/BSD-3-Clause)

Reviews (0)

Team

Other assets in this category

IdP Connector is a generic federated identity provider (IdP) connector, using the SAML protocol to connect to external identity providers. IdP allows your OutSystems applications to integrate with single sign-on (SSO) provided by most of the commercial Identity Provider companies. Also supports SSO from OutSystems mobile apps, alongside with IdP Mobile connector. Tested with Okta, Azure, ADFS, PingOne, OneLogin and ForgeRock OpenAM.

7670

The Cryptographic tools to protect your data. Formerly known as ardoCrypto.

13315

Google Sign-In for Web integration

338

More from Manideep Yadlapalli

Purpose: Enable end-users to create reports / letters templates to be used by hosting Apps without development intervention Use case: An Insurance company have a claim process where a claim representative would process the claim and generate a Settlement Letter, where claim related information is presented to the client. An Admin user create a letter template using html or word and upload it to a backoffice App. The Insurance App, is instrumented with this component, allowing the claim representative to select an available template and have it generated as a pdf file as part of the claim process.

AI enabled image generator from a text input.

This component will help you in converting your file extensions and downloading them. The forge component can perform 30 conversions as follows: Pdf to jpg, Pptx to jpg, Csv to jpg, Docx to jpg, Xls to jpg, Doc to jpg, Png to jpg, Txt to jpg, Pdf to Txt, Doc to Txt, Docx to Txt, Pdf to Png, Svg to Png, Jpg to Png, Docx to jpg, Xls to Png, Doc to Png, Pptx to Png, Txt to Png, Pptx to Pdf, Svg to Pdf, Docx to Pdf, Xls to Pdf, Doc toPdf, Png to Pdf, Txt to Pdf, Jpg to Pdf, Xls to Csv, Doc to Docx, Docx to doc.

194