Documentation

AI agents | Insights

Suggest Edits

What is the AI agents page?

The AI Agents page provides inventory visibility of existing AI agents, including details like:

  • Which agents have a risky level of privilege based on their direct privileges.
  • Tools the agents can access.
  • Top findings and recommendations.

How is it helpful?

The AI Agents page displays a comprehensive view of all your providers' AI agents.

The high-level initial view lets you see at a glance all AI agents in your environment and where anomalies exist that you can troubleshoot and remediate.

The AI Agents page

  1. Summary
    Displays a count of all providers that have AI agents in use within your environment.
  2. Privileged AI Agents by Provider
    Shows a heatmap of each discovered provider. Highest indicates elevated access privileges. Select a provider name to drill down to the Agent Inventory page.
  3. Risky AI Agents
    Highlights risky AI agents by provider. Risk scoring is evaluated on the privilege entitlement scoring. The Highest and High values influence the risky score.
    Drill down to see the recommendations and entitlements on that AI agent.
  4. Top Findings
    Displays the top security findings like external exposures and agents with excessive privileges, ordered by severity. Select a finding to go to the Recommendation Details page.

Investigate AI agents

While the AI Agents page provides a high-level view into all AI agents in your environment, you can see more details and insights for each agent.

  1. Sign into app.beyondtrust.io.
    The BeyondTrust Home page displays.

  2. From the top left of the page, click > Insights > AI Agents.
    The AI Agents page displays.

  3. On the Risky AI Agents tile, select an agent that you'd like to see more details on.
    The agent panel displays.

    The AI agents panel in Identity Security Insights

The panel adapts based on the agent’s provider and configuration and may include:

  • Details: Common metadata (e.g., name, status, model) plus provider‑specific fields (e.g., Azure subscription details) for quick identification and context.
  • Security Graph: Visualizes the agent’s relationships showing which accounts can access it and how it connects across the environment.
  • Agent Privileges: Lists permissions granted to the agent, helping teams spot overprovisioned or risky access.
  • Who Can Access This Agent: Surfaces roles, entities, and even other agents that can invoke it highlighting potential cascading paths to privilege.
  • Tools: Shows callable tools such as MCP servers, Power BI integrations (for Copilot), or custom/third‑party actions (for Agentforce via AgentExchange).
  • Knowledge Sources: Lists the data grounding the agent which is useful for spotting unintended access to sensitive content.
  • Instructions: Displays the prompts or task definitions that guide the agent’s behavior.
  • Recommendations: Highlights prioritized security recommendations based on privilege level and severity
  • Entitlements: Enumerates entitlements with privilege level and type to assess exposure and control.

Updated about 5 hours ago

©2003-2025 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.