Hello,
We are trying to integrate Active Directory with Resilient platform to perform actions such as enabling/disabling user or resetting user password. For which, there is an app available as 'LDAP and Active Directory functions for Resilient' on IBM App Exchange.
After installation, we need to input the credentials such as DN of a master account and password of the account in the app.config file as per the documentation. For this, we have created an account on AD with admin privileges to perform the required actions.
However, Is there any way or workaround for taking actions on AD from Resilient other than this app ? Any other way of doing this using EDR or something ?
Reason being, if Resilient got hacked/interrupted and such AD privileged account created with full control on users, it will be huge impact for our organization.
Please kindly let us know your inputs on this. Any help would be grateful.
Thanks,
------------------------------
Akhilesh Deshmukh,
Data Analyst, SecurityHQ
------------------------------