Early access. This feature is in early access, which means it’s undergoing ongoing testing and development while we gather feedback, validate functionality, and improve outputs. Contact the ConductorOne Support team if you’d like to try it out or share feedback.
How external insights work
When you configure an external insights source, ConductorOne syncs risk data from that tool through its connector. ConductorOne matches each risk score to an identity in your directory by email address and attaches it to that identity’s profile and any accounts they hold in other connected apps.
Once synced, risk scores appear in the ConductorOne UI wherever that identity appears in an access decision.
Enable or disable external insights
This task requires the Super Administrator or Connector Administrator role in ConductorOne.
Go to Integrations > Connectors and select the relevant connector.
On the connector’s Details tab, find the Capabilities section and click Edit.
Under Resource capabilities, enable or disable Identity Risk Score as needed.
Where external insights appear
Access review campaigns
Reviewers see an identity’s risk score and risk factors on each review task, under the Insights tab. Risk factors are the specific reasons the source tool assigned that score — for example, STALE_ACCOUNT or WEAK_PASSWORD_POLICY. Reviewers can use this context to prioritize high-risk identities and make more informed certify or revoke decisions.
Task log
The task log includes an Insights column. Hovering over the insights indicator for a task shows a summary of the identity’s risk score and risk factors inline, with a link to view the full details.
Access request approvals
Approvers can see an identity’s current risk score and risk factors in a request task before submitting their decision.
Supported external insights sources
