Documentation

PathfinderAI

PathfinderAI

PathfinderAI is an AI assistant built into Identity Security Insights that lets you ask questions about your environment in natural language. Instead of navigating dashboards or building filters, you type or speak a question and PathfinderAI queries your live data to deliver a structured, actionable response.

PathfinderAI has access to the same data you see throughout Insights. Every connector you have configured is available to it. If Insights can see it, PathfinderAI can answer questions about it.

Activate PathfinderAI from the Pathfinder Administration site. See Configure PathfinderAI.

ℹ️

  • The intentional design of this system mitigates the potential impact of prompt injection
  • Exposing Insights data is a core part of our functionality and is therefore not a vulnerability
  • Usage of our LLM agent for other use cases (e.g general LLM questions) is acceptable. While not encouraged, we see no reason why customers can't use our LLM given that they are paying for it

Access PathfinderAI

Once enabled by an administrator, select PathfinderAI from the main navigation menu. This opens a chat interface where you can start asking questions immediately.

PathfinderAI displays a set of suggested prompts to help you get started:

  • How many users are in my environment?
  • Who can get to global admin?
  • What entitlements should I be worried about?
  • Show me the latest security report.
  • What are the top risks this month?
  • How can I improve our compliance posture?

What you can ask

PathfinderAI can answer questions across any provider you have connected to Insights. Common use cases include:

Environment overview

Ask about the size and shape of your environment – total accounts, identities, human vs. service accounts, and how they break down across providers.

Example: "How many users are in my environment?"

Privilege analysis

Ask who holds specific roles or who can reach them through privilege paths. PathfinderAI returns a breakdown of accounts by type – human users, service accounts, and applications – along with the roles and paths involved.

Example: "Who can get to global admin?"

Excessive permissions

Ask which accounts have the most permissions, and PathfinderAI ranks them by provider and risk level – covering Active Directory, Azure AD, AWS, ServiceNow, and any other connected provider.

Example: "Which accounts have the most excessive permissions?"

Stale and dormant accounts

Ask about privileged accounts that have not been active, and PathfinderAI surfaces them with days-inactive counts, password age, and risk context.

Example: "Are there any stale accounts with privileged access?"

Risk prioritization

Ask about current risks, and PathfinderAI delivers severity-ranked findings with instance counts and impact context.

Example: "What are the top risks this month?"

Cross-provider breakdown

Ask PathfinderAI to slice any analysis by provider, role, or other dimension. It uses the context of your current conversation, so follow-up questions work without restating the original topic.

Example: "Can you break that down by provider?"

Ask questions

You can interact with PathfinderAI by typing in the message box or using voice input via the microphone button.

PathfinderAI supports follow-up questions within a conversation. For example, you can ask a broad question first, then narrow it down:

  1. "Are there any stale accounts with privileged access?"
  2. "Break that down by provider."

PathfinderAI uses the context of the current conversation to refine its responses.

Responses

PathfinderAI returns structured responses that include:

  • Formatted summaries with headings, tables, and categorized lists
  • Severity-ranked findings with instance counts and impact context
  • Remediation recommendations – when a risk is identified, PathfinderAI provides prioritized next steps so you know what to address first and why

Response actions

Each response includes the following actions:

IconAction
CopyCopy the response to your clipboard
RetryRe-run the last prompt to get a new response
QuoteReply with a quote from the response
Thumbs up / Thumbs downProvide feedback on whether the response was helpful

Data access

PathfinderAI queries the same data available throughout Insights. It does not connect to external systems directly. It works with the data your configured connectors bring into Insights.

If a connector is not configured for a given provider, PathfinderAI will not have data for that provider. To expand what PathfinderAI can answer questions about, configure additional connectors in Insights. See Connectors for details.

Updated about 3 hours ago

What’s Next

©2003-2026 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.