A general place for Identity Secuirty Insights conversations.
Recently active
Geopolitics and Cybersecurity: Why Attackers Go After Identities and Privileged Access First Geopolitics and the 2026 Cybersecurity Landscape Cybersecurity must no longer just focus on protecting against zero‑day vulnerabilities or malware. Increasingly, geopolitical instability is the motivation behind attacks, spilling global tensions into corporate environments. In many cases, attackers are going after the privilege pathways that real users rely on every day, like usernames and passwords, high‑level access rights, and paths into sensitive systems that are not well monitored or watched. For cybersecurity teams, this means identity and privileged access are the main battleground. Identity and Access Risk in a Geopolitical Context According to the World Economic Forum’s Global Cybersecurity Outlook 2026, “In 2026, geopolitics remains the top factor influencing overall cyber risk mitigation strategies.”The report highlights that geopolitical instability is driving major shifts in cybers
How the BeyondTrust and ServiceNow Integration is Redefining Identity Security for the Modern Service Desk Ask any IT or security leader what their service desk looks like on a typical Tuesday, and the answer is usually something like this: a ticket in ServiceNow, a separate privileged access request in another tool, an identity alert firing in a third, and a vendor waiting for remote access approval in a fourth. Compounding this is a growing list of AI agents operating in the background that no one has full visibility into. The modern service desk wasn't designed for the identity-first, AI-accelerated threat landscape we now live in. It was built to track and resolve issues—not to serve as the nerve center for identity privilege, access governance, and incident response. This fragmentation results in multiple tools, manual handoffs, duplicated processes, and a lack of a single audit trail. Security teams spend more time correlating data than acting on it. This gap is a dangerous risk
Hi community,I’m Andrew Rivera, a Product Manager at BeyondTrust, and I’d like to invite interested customers to participate in an upcoming beta for a new product we’re actively developing on the BeyondTrust Pathfinder platform: Workload Credentials.Workload Credentials is designed for modern cloud-native and DevOps environments, enabling workloads such as CI/CD pipelines, Kubernetes workloads, Terraform, and AI agents to authenticate using workload identity (OIDC) and receive short-lived, automatically expiring credentials — eliminating the need for static secrets and manual credential rotation.We’re looking for customers interested in evaluating the current functionality and helping shape the future direction of the product through real-world feedback and collaboration with our product and engineering teams.Current areas of focus include:OIDC federation Dynamic AWS credentials Kubernetes and CI/CD integrations Policy-based access controls This beta is best suited for DevOps, SRE, Clo
Claude & Control: An Introduction to Agentic C2 with Computer Use Agents This blog explores how computer use agents can be used to build an agentic command-and-control framework. By combining LLM reasoning with desktop interaction tools, attackers could automate endpoint control while blending into normal system behavior. Here, we break down the architecture, abuse scenarios, and detection opportunities.Continue Reading HERE Customer Case Studyivision: How ivision Simplifies and Scales Identity Security with BeyondTrust Latest Available VersionsIdentity Security Insights 26.04.1 April 2026Identity Security Insights March 2026 BeeKeepers Hot TopicsClick here for the most popular articles in our BeeKeepers Community Upcoming and In Case You Missed It WebinarsUpcoming Webinar: You Can’t Protect What You Can’t See: Achieving Continuous Visibility and Control Over Privileged Identities - May 12, 2026Upcoming Tech Talk Tuesday: Product Education: What’s new in ISRA 2.0 – May 19, 2026Pri
Finding the Forgotten: Why Credential Discovery Is Essential To Securing Privileged Remote Access The Hidden Credential Problem in Privileged Remote Access. Remote access is ubiquitous, spanning endpoints, cloud systems, and third-party connections. But a common blind spot remains: most organizations do not know the full spectrum of privileged accounts and credentials hiding within their networks.Forgotten admin accounts, orphaned service accounts, and overlooked credentials can create serious security gaps. This is where credential discovery in privileged remote access (PRA) comes in. Some may see this as housekeeping, but it provides strategic insight that keeps your systems secure, clarifies ownership, and eliminates dormant accounts before they become liabilities. Ghost Accounts Hiding in Plain Sight Hidden credentials are more common and dangerous than you might think. They include: Legacy Admin Accounts: Privileged users that were never decommissioned Over-privileged Service Ac
Securing the Mission with BeyondTrust Identity Security for Government BeyondTrust’s Expanded FedRAMP Marketplace Solutions are Reinforcing Government Cybersecurity Goals The BeyondTrust Pathfinder Platform and Identity Security Insights® are now available on the FedRAMP® Marketplace under the designation BeyondTrust Identity Security for Government. This milestone, which represents the latest expansion of BeyondTrust’s FedRAMP-authorized cloud portfolio, underscores BeyondTrust’s deep commitment to providing U.S. public sector and government-adjacent organizations with a comprehensive control plane for privileged access management so they can strengthen their identity security and zero trust initiatives with proven, enterprise-grade solutions. Trusted by Fortune 500 enterprises, leading cybersecurity peers, and government agencies across all 50 states and all civilian federal agencies, as well as pioneers in identity security and privileged access management, BeyondTrust now extends u
A client, and myself, all have the same error on our Azure connector: Unable to access Platform Environments: Insufficient privileges. Unable to access Platform Admin Applications: Insufficient privilegesIs anyone else seeing this issue? Bit of coincidence that we have this in three seperate sites.
What’s New: Identity Security Insights 25.10 New features Redesigned default dashboardWe’ve replaced the previous default dashboard with a redesigned experience that’s faster to act on and richer in context. The new dashboard brings together 20 tiles that unify attack‑path analysis, identity graph insights, and risk signals in one place. Each tile is interactive – click any segment or bar to drill into filtered lists, detailed reports, or related pages.Use this dashboard to: Visualize escalation risk with True Privilege and Paths to Privilege (including cross‑domain pivots) to see how access can be reached or abused. Survey your identity and access surface across human and non‑human accounts, AI agents, secrets, and entitlements, with connector health baked in. Prioritize unresolved risk with findings grouped by severity and aligned to MITRE ATT&CK® for clearer triage and reporting. Track detections and recommendations using month‑to‑date, severity, and all‑time views to focu
Connecting Identity Security Insights to Okta Introduction Identity Security Insights (Insights) connectors allows the integration of first- and third-party identity and account information with the BeyondTrust Insights console. Leveraging this data, the Insights platform constructs robust identity analytics, proficiently identifies potential identity security vulnerabilities, and offers informed security guidance.Upon successful configuration, Insights automatically schedules and pulls data from the enabled connectors. This allows it to update the content of the console's dashboards and reports with fresh insights, revised recommendations, and recent threat detections. Contents Configure app and role in Okta Create an app integration Create a new role and resource set Add the administrator role to Insights Create the connector in Insights Configure app and role in Okta Create an app integration Note:Ensure the user is logged in to their Okta account as a read-only ad
Connecting Identity Security Insights to Microsoft Active Directory IntroductionIdentity Security Insights (Insights) connectors allows the integration of first- and third-party identity and account information with the BeyondTrust Insights console. The Insights platform uses this data to build identity analytics, detect identity security threats, and make security recommendations. Once configured, Insights automatically schedules and pulls data from the enabled connectors, and updates the console's dashboards and reports with new or changed recommendations and detections. Prerequisites The Microsoft Active Directory connector should be installed and configured on a member server within the Active Directory. The installer is provided for the tenant after completing the initial configuration. Ensure the following requirements are met before installation: Member Server: The installer must be run on a Windows Server joined to the domain the user would like Insights to access. Service A
Setting Up Identity Security Insights for Sub-Domains Identity Security Insights can be set up for sub-domains. Extra collectors may need to be set up depending on the network connectivity of your organization's environment and the size of the domain. If one machine or member server can reliably connect to all domains and they are not too large (less than 100k users across all domains), only one Insights collector will need to be installed as a minimum to pull information from all the sub-domains.If the connection is unreliable and or large, then separate Insights collectors with targeted domain activated will be required to use Insights with sub-domain, otherwise, data may be doubled when it is collected. Note: Separate insights connectors with targeted domain are recommended for any environments with sub-domains even smaller environments in case of any network failures. For instructions on creating a Insights collector, refer to Insights Collector. How to activate targeted domain W
we recently deployed BeyondTrust in our environment. so far it has been a learning process for me. I need help desperately about an issue i hope i can get help here. Thank you I have few dmz boxes in an address group and with local functional and scan accounts. They all use the same functional account and password. on one of the six boxes I am getting error alert emailed with a message that the password rotate was failed Functional account..I have tried many suggested solutions including the article available here: https://beyondtrustcorp.service-now.com/csm?id=kb_article&sys_id=53adfd211b65e2106fe95287624bcb05. This error only occurs on server that is newly added to the group. The rest of the five servers are fine. This seemed to relate the Functional account on the machine. This VM was newly added to the existing group that already used a Functional account rotated password. I tested and i can login with both Functional and Scan accounts, they both are in local administrators. H
Hello All,I have quick question about Beyond trust discovery scan accounts. We have configured scanning for certain servers accounts. When I look into scanned asset, I am able to convert “unmanaged” account from General data section but I dont see option to convert “Users” shown in Scan data section. Does anyone know how we can get these users in Managed account list.
How to connect Identity Security Insights to BeyondTrust Password Safe Cloud Identity Security Insights (Insights) connectors allow the integration of first- and third-party identity and account information with the BeyondTrust Insights console. Leveraging this data, the Insights platform constructs robust identity analytics, proficiently identifies potential identity security vulnerabilities, and offers informed security guidance.Upon successful configuration, Insights automatically schedules and pulls data from the enabled connectors. This allows it to update the content of the console's dashboards and reports with fresh insights, revised recommendations, and recent threat detectionsFor Password Safe 24.1.1 and newer releases, when an Identity Security Insights connector installation key is enabled in Password Safe, discovery scan events are forwarded from the event service to Identity Security Insights. This provides visibility into possible attack paths, identity-based threats, and
When will Insights be available on-premise? For those under compliance rules and laws, cloud based is simply not an option. The product would be very beneficial to compliance and regulatory customers.
How Identity Security Insights helped advance identity security programs in 2024 In 2024, BeyondTrust Identity Security Insights aimed to strengthen our collective identity security by enabling identity and access management (IAM) leaders across a variety of industries to uncover identity vulnerabilities and hidden Paths to Privilege™. These leaders can then use these in-depth insights to better manage their identity security posture over time. As more customers have adopted Identity Security Insights as an integral part of their identity security programs, we’ve heard great things about their first impressions and continued success with the solution. We’ve also had the opportunity to glean valuable “insights” of our own from their experiences:Read more on our blog. Latest Available Version: Identity Security Insights 25.05: May, 2025 New features Dashboard reporting section We added a Dashboard menu on the Reports page to make it easier to access your dashboards. The dashboard tiles
BeyondTrust Releases AI-powered True Privilege Graph to Expose How Attackers Exploit Hidden Paths to Privilege Revolutionary technology redefines Identity Security by revealing previously undetectable Paths to Privilege attackers attempt to leverage Prioritized remediations enhance security across endpoints, servers, Cloud and SaaS environments, reducing alert fatigue and enabling organizations to strengthen their defenses before attacks occur Read more on our blog Latest Available Version: 25.04 - April 2025 What's New: DashboardsThe Insights Home page is now divided into focused dashboards that you can switch between using a drop-down. Each dashboard is designed for a specific purpose or persona and offers different at-a-glance information.Insights Summary dashboardThis dashboard contains the original tiles from the Insights Home page and provides a summary of collected data.Security Analysis Overview dashboardCreated for Security Analysts, this dashboard contains critical metrics
Greetings! I'm Phillip Lehner, the Senior Director of Education at BeyondTrust, and I'm thrilled to lead our efforts in delivering exceptional learning experiences. I'm excited to share how we're elevating your journey with a new, streamlined method of accessing training: Success Included with BeyondTrust University. At BeyondTrust University, we believe our customers deserve nothing short of excellence in the tools they use. That’s why we’ve launched 'Success Included' — to elevate your learning experience and ensure you achieve success with BeyondTrust’s solutions. Success Included is an education program that makes foundational knowledge accessible to customers at no additional cost. It features easy-to-follow, self-paced eLearning courses that empower system administrators to configure and manage BeyondTrust products using industry best practices. Our goal is to equip learners with the knowledge needed to maximize the value of their investment with BeyondTrust. Because your
Hello! Last month our Chief Customer Officer, Sean Cashin, provided some information on our upcoming dedicated user community. I’m excited to announce that BeyondTrust launched our new BeeKeepers community on Monday, September 16th! Why BeeKeepers?The name BeeKeepers was born from the idea to protect and secure privileged identities, along with the paths those identities follow in order to gain privilege, aka Paths to Privilege. What does the BeeKeepers name mean to us?Imagine a company’s data and secrets as the honey in a beehive. BeeKeepers take care of the hive, protecting the honey and honeybees, from predators the live to steal the honey, damaging and destroying the hive. Now imagine you, BeyondTrust customers, IT Admins, SOC professionals, and CISOs are the BeeKeepers! And honeybees are identities – human and non-human – continuously travelling along their flight paths, the Paths to Privilege, collecting pollen and making more honey. BeeKeepers protect the honeybees’ path and con
Already have an account? Login
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.