EDR: How to Set Enhanced Permissions for LDAP Integration
search cancel

EDR: How to Set Enhanced Permissions for LDAP Integration

book

Article ID: 285671

calendar_today

Updated On:

Products

Carbon Black EDR (formerly Cb Response)

Issue/Introduction

How to set enhanced permissions for LDAP integration

Environment

  • EDR Server: 7.7.0 and Higher

Resolution

In the /etc/cb/sso/attr_map.ldap.py, add the permissions to your team mappings
  
team_mappings = {
    'team1': {
        'teams': ['Analysts', 'Team1'],
        'permissions': ['ban_hash_execute', ‘live_query_execute']
    }
}

 

Additional Information

Available team mapping permissions
  • global_admin
  • ban_hash_execute
  • isolate_sensor_execute
  • tamper_protection_execute
  • uninstall_sensor_execute
  • livequery_execute
Powered by Wolken Software