Identity Explorer
Tenable Identity Exposure's Identity Explorer view unifies identities across both Active Directory and Microsoft Entra ID . This view shows the Identity Risk Score (beta) for each listed asset and the potential reach of compromised identities.
To access the Identity Explorer:
Note: The Identity Explorer is only visible if you use the Microsoft Entra ID feature. For more information, see Microsoft Entra ID Support.
-
In Tenable Identity Exposure, click on the Identity Explorer icon
in the left navigation bar.The Identity Explorer pane opens.
The Identity Explorer pane shows the following information for total accessible resources:
-
Identity Name — Name of the user account under the identity provider.
-
Account Provider — The Identity Provider.
-
Exposure Score — Tenable Identity Exposure calculates this metric by assessing the criticality of an asset or identity and its vulnerabilities for each identity provider, and aggregates it to provide an overall exposure score for a given identity.
Note: Tenable Identity Exposure only shows the Exposure Score if you have the Tenable One license. -
Open Risks — The number of findings that an Microsoft Entra ID Indicator of Exposure detects when it scans the asset. For more information, see Indicators of Exposure Related to Microsoft Entra ID.
-
Total Accessible Resources — The number of resources of any type to which this asset has access (read, write, etc.)
To search for an identity:
-
In the Identity Explorer pane's Search box, type the name of the user or account.
-
Click the
icon.Tenable Identity Exposure shows the matching results.
To export identities:
-
At the bottom of the Identity Explorer pane, click Export all.
The Export Identities pane opens.
-
Click Export all.
Tenable Identity Exposure downloads the file to the local machine.