Knowledge Base

Access official resources from Carbon Black experts

IMPORTANT ANNOUNCEMENT: On May 6, 2024, Carbon Black User eXchange (UeX) and Case Management will move to a new platform!
The Community will be in read-only mode starting April 19th, 7:00 AM PDT. Check out the blog post!
You will still be able to use the case portal to create and interact with your support cases until the transition, view more information here!

Environment

EDR Server: 7.7.0 and Higher

Objective

How to set enhanced permissions for LDAP integration

Resolution

In the /etc/cb/sso/attr_map.ldap.py, add the permissions to your team mappings

team_mappings = {
    'team1': {
        'teams': ['Analysts', 'Team1'],
        'permissions': ['ban_hash_execute', ‘live_query_execute']
    }
}

Additional Notes

Available team mapping permissions

global_admin
ban_hash_execute
isolate_sensor_execute
tamper_protection_execute
uninstall_sensor_execute
livequery_execute

Article Information

Author:

Creation Date:

‎07-11-2022

Views:

453

Copyright © 2005-2023 Broadcom. All Rights Reserved. The term “Broadcom” refers to Broadcom Inc. and/or its subsidiaries.