Documentation

Agent inventory | Insights

Suggest Edits

What is agent inventory?

Discover and inventory AI agents across your cloud environment ensuring visibility into all provider identities. AI agents often have excessive privileges and can access sensitive data, creating security vulnerabilities. The agent inventory keeps you informed of AI agent use.

How is it useful?

Agent inventory provides security teams and platform owners a clear picture of AI agents in the environment. Your team can audit agent behavior, review privilege exposure, and investigate findings.

The Agent Inventory page

Review details like the total number of agents, the total number of privileged agents, the count of providers, and each agent's name, privilege level, number of connections, and model.

  1. Summary metrics show total agents, privileged agents, and provider distribution for quick situational awareness.
  2. Filters: Select a filter to refine your results.
Filter types

  • Provider: Select a provider name from the list.

  • Privilege:Select the privilege entitlement: High, Highest, Undetermined, or select all.

  • Model: Select the AI model used by the agent. Select all to see all models.

  • Instruction contains: Enter a text string to sort on instructions.

  1. More information about the AI agent, including name, provider, privilege, connections, and instructions.

Investigate AI agents

While the Agent Inventory page provides a high-level view into all AI agents in your environment, you can see more details and insights for each agent.

  1. Sign into app.beyondtrust.io.
    The BeyondTrust Home page displays.

  2. From the top left of the page, click > Insights > Agent Inventory.
    The Agent Inventory page displays.

  3. On the AI Agents tile, select an agent that you'd like to see more details on.
    The agent panel displays.

    The AI agents panel in Identity Security Insights

The panel adapts based on the agent’s provider and configuration and may include:

  • Details: Common metadata (e.g., name, status, model) plus provider‑specific fields (e.g., Azure subscription details) for quick identification and context.
  • Security Graph: Visualizes the agent’s relationships showing which accounts can access it and how it connects across the environment.
  • Agent Privileges: Lists permissions granted to the agent, helping teams spot overprovisioned or risky access.
  • Who Can Access This Agent: Surfaces roles, entities, and even other agents that can invoke it highlighting potential cascading paths to privilege.
  • Tools: Shows callable tools such as MCP servers, Power BI integrations (for Copilot), or custom/third‑party actions (for Agentforce via AgentExchange).
  • Knowledge Sources: Lists the data grounding the agent which is useful for spotting unintended access to sensitive content.
  • Instructions: Displays the prompts or task definitions that guide the agent’s behavior.
  • Recommendations: Highlights prioritized security recommendations based on privilege level and severity
  • Entitlements: Enumerates entitlements with privilege level and type to assess exposure and control.

Updated about 5 hours ago

©2003-2025 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.