Prerequisites
Full OpenGraph support requires a PostgreSQL graph database and one of the following editions:- BloodHound Enterprise (uses PostgreSQL by default)
-
BloodHound Community v8.0.0+ (requires changing to a PostgreSQL database)
While many OpenGraph features may work on a Neo4j database, there are functional and performance limitations (see the OpenGraph FAQ). For full support, migrate to a PostgreSQL database.
Install the Extension
Optional Schemas
If your uses SCIM, upload the bh-scim-extension.json schema as well. This schema provides a shared model for provisioned users and groups across cloud identity providers and applications. If is connected to other BloodHound-supported data sources in your environment, such as , make sure the corresponding schema is installed too. In BloodHound Enterprise v9.3.0 and later, some extensions (such as GitHub, Jamf, and Okta) are pre-installed. Upload any companion schemas that are not already installed. Doing so ensures those cross-platform relationships are modeled correctly in BloodHound.Import Cypher Queries
Collect and Upload Data
Configure Privilege Zones
Read the Tier Zero Classification page to understand the rationale behind the Tier Zero Privilege Zone rules.