Resmo Agent is an on-host tool to capture employee SaaS logins. It proxies HTTPS requests using a self-signed certificate, captures login requests and informs Resmo with minimum required data.

Strength of a captured password is decided on by the agent based on the password policy entered by the customer, password is never sent to the server.

Syncing The Agent

Heartbeat

Every 15 minutes, the agent synchronizes with the server and gets new config data.

Get Unauthorized Apps

Every 15 minutes, the list of apps that are marked as "Unauthorized" within Resmo is checked to see whether there are any changes in the list.

Login Capture

Username/Email Address & Password

• Tracking requests

Requests containing a username/email address & password are tracked and marked as a "login-related request".

User Notification for Unauthorized App

When a user accesses or attempts to access an unauthorized app, the agent notifies the user to inform the app's status.

Known Limitations

• Available only to MacOS.

• AWS SDK fails [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self-signed certificate in certificate chain (_ssl.c:1006)

• SSO Logins are not captured

• No support to block specific domains

Installation

Agent is currently in beta, thus it is only available through support@resmo.com. Resmo support will send you an installation package based on your platform architecture and guide you through the installation.

Installation Package Content

After downloading the package, you need to run the following command to add certificate authority in Keychain Access:

sudo security add-trusted-cert \
  -d \
  -r trustRoot \
  -k /Library/Keychains/System.keychain \
  certs/cert.crt

Then you are ready to run the agent; run the following command with your information:

./resmo-agent --email <YOUR_COMPANY_EMAIL_ADDRESS> --api-key <YOUR_EXTENSION_TOKEN>