Privilege Zones help you organize objects in your environment into logical groups based on their privilege and risk levels. Using Privilege Zones, you can monitor and maintain the security posture of tiered isolation models.
The Privilege Zones feature is available under early access.
Key concepts
Review these key concepts before exploring Privilege Zones. You can find detailed explanations for each concept in the articles throughout this section.| Concept | Description | Used in Risk Analysis |
|---|---|---|
| Zone | A group of objects representing the hierarchy of control across all domains in an environment (based on access level) | |
| Label | A flexible way to categorize objects for easier searching and filtering | |
| Certification | Enterprise Edition An optional process to interrupt automatic inclusion of additional objects in a zone by requiring manual certification of the additional objects |
BloodHound Enterprise customers can create additional zones to match their organization’s security model. However, analyzing them requires the Privilege Zone Analysis feature (available for purchase). For more information, contact your sales representative.
Features
The Zone Builder page provides tools for configuring and managing your privilege zones. Once configured, BloodHound Enterprise analyzes your zones and displays findings in the Attack Paths and Posture pages. The Zone Builder page provides the following tabs:- Zones: A group of objects that represent the hierarchy of control across all domains in an environment based on access level
- Labels: A flexible way to categorize a group of objects in a single zone (or across multiple zones) for easier searching and filtering
- Certifications Enterprise Edition: An optional process to interrupt automatic inclusion of additional objects in a zone by requiring manual certification of the additional objects
- History: An audit log of changes made to your zones and labels over time