topic Forwarding Specific Alert Severities to QRadar in Endpoint https://community.checkpoint.com/t5/Endpoint/Forwarding-Specific-Alert-Severities-to-QRadar/m-p/249541#M10586 <P>Hello,</P><P>As part of integrating Harmony EDR solution with our SIEM platform (QRadar), I would like to confirm whether it is possible to forward only alerts with Medium, High, and Critical severities to QRadar.</P><P>If this is feasible, is it with the forwarding through a Syslog server or directly to QRadar via an API call?</P><P>Please note that the Harmony EDR instance is deployed in SaaS mode.</P><P>Thank you in advance for your assistance</P> Wed, 21 May 2025 20:14:44 GMT Fares-Ayed 2025-05-21T20:14:44Z Forwarding Specific Alert Severities to QRadar https://community.checkpoint.com/t5/Endpoint/Forwarding-Specific-Alert-Severities-to-QRadar/m-p/249541#M10586 <P>Hello,</P><P>As part of integrating Harmony EDR solution with our SIEM platform (QRadar), I would like to confirm whether it is possible to forward only alerts with Medium, High, and Critical severities to QRadar.</P><P>If this is feasible, is it with the forwarding through a Syslog server or directly to QRadar via an API call?</P><P>Please note that the Harmony EDR instance is deployed in SaaS mode.</P><P>Thank you in advance for your assistance</P> Wed, 21 May 2025 20:14:44 GMT https://community.checkpoint.com/t5/Endpoint/Forwarding-Specific-Alert-Severities-to-QRadar/m-p/249541#M10586 Fares-Ayed 2025-05-21T20:14:44Z Re: Forwarding Specific Alert Severities to QRadar https://community.checkpoint.com/t5/Endpoint/Forwarding-Specific-Alert-Severities-to-QRadar/m-p/249969#M10587 <P>Should be possible, yes:&nbsp;<A href="https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Infinity-Portal-Admin-Guide/Content/Topics-Infinity-Portal/Event-Forwarding.htm" target="_blank">https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Infinity-Portal-Admin-Guide/Content/Topics-Infinity-Portal/Event-Forwarding.htm</A><BR />Note this requires a specific license; please consult with your local Check Point office.</P> Tue, 27 May 2025 22:12:54 GMT https://community.checkpoint.com/t5/Endpoint/Forwarding-Specific-Alert-Severities-to-QRadar/m-p/249969#M10587 PhoneBoy 2025-05-27T22:12:54Z