Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

CB Response 6.4 Integration Guide

CB Response 6.4 Integration Guide

Note: This document applies to  CB Response Server versions 6.4.0 and 6.4.1.

This documentation provides information for administrators who are responsible for integrating CB Response with various other tools. It discusses:

  • Integration with CB Protection (formerly Bit9)
  • Integration with Microsoft Enhanced Mitigation Experience Toolkit (EMET)
  • Supported SAML 2.0 specifications and SAML 2.0 Single Sign-On (SSO) setup. This includes integration with the OKTA, Shibboleth, and ADFS IdPs
  • The Duo plugin, which you can configure two-factor authentication and download the Duo Mobile application on a mobile device
  • Syslog output for CB Response events
  • CB Response support for Virtual Desktop Infrastructure (VDI) and how to configure your machines to use it

See the Comments below for changes to this version.

Labels (2)
Attachments
Comments

Change log for the June 2019 CB Response 6.4.0 Integration Guide (changes since the most recent 6.3.x User Guide):

  1. In the “Syslog” chapter, noted that Rsyslog is not supported for CB Response Cloud. See https://community.carbonblack.com/t5/Knowledge-Base/CB-Response-Cloud-What-are-the-Supported-Vendors... for more information.
  2. In the “Integrating with Third-Party Authentication” chapter, corrected the command line “/usr/share/cb/plugins/duo/secrets.ini” which previously spelled “usr” incorrectly.
  3. Other minor corrections and improvements were made.
Article Information
Author:
Creation Date:
‎06-18-2019
Views:
5513
Contributors