Verifying your QRadar configuration
After the installation of the Centrify Add-on for QRadar is complete, QRadar should be parsing and indexing the new Centrify audit trail events.
To validate your installation:
-
Generate some Centrify audit trail events into a Centrify managed member server.
For example, log in to the server to generate an authentication event. You should be able to access the generated events from the QRadar Console system.