Identity Security Insights 26.04

Insights is now available in the Australia and India regions. The full suite of identity security capabilities (Identities and Privileges, Secrets Security, AI Security, Detections, and Recommendations) is ready to go, with your data staying in-region to meet local compliance and data sovereignty requirements.

The Identity Security Risk Assessment has been completely redesigned and now lives as a dedicated page in the Insights navigation, replacing the previous ISRA dashboard from the dashboard dropdown. Five purpose-built tabs replace the old layout, with broader coverage and more structured analysis.

What you get with the new assessment:

• Overview: A single-page snapshot of your identity landscape: total discovered accounts, identities, non-human accounts, AI agents, and secrets. Top risk accounts and privilege escalation hotspots are called out so you know where to look first.
• Security Themes: Findings organized around Active Directory credential hygiene, Entra ID security gaps (MFA coverage, excessive admin roles, Conditional Access), offboarding completeness, service account risks, and certificate services issues. Each theme is broken down by privilege level for easier prioritization.
• True Privilege: Standing privilege concentrations, vertical and lateral escalation routes, cross-domain paths, and the accounts that carry the most risk. This is the full True Privilege™ picture, not just who has access, but how that access connects.
• Emerging Themes: New coverage areas informed by Phantom Labs, BeyondTrust's research team. Visibility into AI agents operating in your environment, their privilege levels, escalation paths, connected tools, and model providers. Plus secrets management risk analysis: rotation age, access patterns, and high-risk credential findings.
• Findings Explorer: Every finding across your environment, stratified by severity. Critical, high, moderate, and low at a glance, impacted accounts broken down by type (human, service, AI agent), and your findings surfaced for attention.

Tables throughout the assessment are interactive. Click any row to open a side panel with full details on that account, secret, or AI agent without leaving the page.

Why It Matters

The assessment gives you a structured way to understand the blast radius of identity risks in your environment. Privilege escalation paths show not just who has access, but how that access could be chained to reach critical resources. The Emerging Themes tab brings AI agents and secrets exposure into the same analysis, areas that are often invisible until something goes wrong.

Two new tabs on the AI Inventory page, AI Tools and AI Datasets, give you focused views alongside the existing AI Agents inventory.

• AI Tools covers every tool your AI agents are configured to call across all connected providers: functions, API connectors, action groups, and more. Filter by provider or tool name, track accessor counts and versions, and click into any row for detail.
• AI Datasets covers the other side: the knowledge bases, data stores, and content sources your agents draw from. Same filtering, same drill-down, organized by provider and dataset.

As AI adoption grows across your environment, these views give you a clear inventory of the tools and data your agents can reach, essential for governance and keeping track of what's being provisioned.

You can now drag the left edge of any side panel in Insights to make it wider or narrower. Reviewing entitlements, triaging detections, inspecting secrets: resize the panel to fit the task instead of working around a fixed width. When panels stack, a visual indicator on the edge lets you know there's another one underneath.