Identity Security Insights 26.04.1
🆕 Features
PathfinderAI (Early Access). Explore Your Security Data with AI
Your identity security data just got a whole lot easier to explore. PathfinderAI is an AI assistant accessible from the main navigation menu for organizations with Insights. Type or speak a question in natural language, and it queries your live environment data to deliver structured, actionable answers. No dashboards to navigate, no filters to configure – just ask "who can get to global admin?" and get a prioritized breakdown of every account with that access, how they got it, and what to do about it.
What you get with PathfinderAI
- Instant answers across every connected provider: PathfinderAI has access to the same data you see throughout Insights – every connector you've configured is fair game. Ask about Azure AD roles, Active Directory privilege paths, AWS permissions, ServiceNow accounts, or any other connected provider, and get a unified answer without switching between views or building queries.
- Risk-prioritized analysis on demand: Ask PathfinderAI about your top risks, excessive permissions, or stale accounts, and it delivers severity-ranked findings with instance counts and impact context – broken down by provider, by role, or however you want to slice it. Follow up with "break that down by provider" and it refines the answer without losing context.
- Actionable recommendations, not just data: When PathfinderAI identifies a risk, it doesn't stop at the finding. It provides prioritized remediation steps so you know what to address first and why.
- Follow-up questions within a conversation: Start with a broad question like "are there stale accounts with privileged access?" then drill down with "break that down by provider". PathfinderAI uses the context of your current conversation so you don't have to repeat yourself.
Important informationPathfinderAI is available as an Early Access feature in the US region only.
To enable it, an Administrator must navigate to the Administration site, select the edit button for the site, and toggle PathfinderAI to "On." Once enabled, PathfinderAI appears in the main navigation menu. Each response includes options to copy, retry, quote-reply, and provide feedback on whether the response was helpful.
✨Enhancements
See every entitlement assignment at a glance. Full visibility into who holds what.
Selecting an entitlement opens a side panel showing the top accounts that hold it. If there are many accounts with that entitlement, a "View Details" link is now presented in the side panel – clicking it takes you to a new focused list view showing every account assigned to that entitlement.
This new Entitlements List view shows one row per account, so you can see exactly which accounts have been assigned a given entitlement. You can filter by account name, entitlement name, provider, privilege level, and more to quickly find what you're looking for.
Security graphs in side panels. Investigate access paths without switching views.
Security graphs now live inside more side panels across the product. Open an account and its security graph is right there – access paths, connected resources, and privilege escalation chains visible where you're already investigating. Click an entitlement in the flattened list and a dedicated side panel shows the full access chain as a left-to-right graph, alongside entitlement details like privilege level, category, and scope.
Azure CloudShell support. Onboard your Azure connector from the browser
The Azure onboarding script now runs in Azure CloudShell – sign in, upload the script, and run the provided commands right from your browser. Local PowerShell is still fully supported . All connector capabilities are supported, including AI Agents for Power Platform.
