Active Directory Integration
Last updated
Last updated
The CyberCyte portal can integrate with Active Directory for further analysis and investigations. To integrate, please follow these steps:
Please navigate to "Settings & Reporting" -> "Integration Settings" -> "Credential Settings". Click on the "+ Credential" button to create a new credential. Select the "WINDOWS" as a "Credential Type".
Please navigate to "Settings & Reporting" -> "Integration Settings" -> "Repository Management". Click on the "+Repository" button to create a new AD(Active Directory) repository and select the "Active Directory" as Asset Repository Type, and please select the credential that we created in the first step as a "Remote Credential". After that fill the rest of the blank fields, the "Pull from Server" option should be disabled. Save the settings when everything is defined.
Please navigate to "Rules & Policies" -> "Policy Management" -> Click on the "+ Policy" button. Please select the module named "Scenario and Network Discovery" and type named "Active Directory Analysis". After the selection, required fields will appeared. Please fill in the blanks with required values. For default values, users can use these values in images below.
The users can assign this policy to their group(s). Also, the collection intervals can be changed to their requirements.
The users can add custom tags by just typing and hitting the enter. The policy will automatically accept the tags.
Please navigate to "Home" -> "User Overview" -> "Domain Overview" and "Asset Overview". The "Domain Overview" and "Asset Overview" dashboards provides a great visibility on the active directory and domain information.
Domain Analysis Example Dashboard:
Asset Overview Example Dashboard:
