Everything OrbisID™ does

From discovery to detection — the full privileged-access picture in one self-hosted product.

Discovery & Inventory

Find and classify privileged access everywhere

Onboard systems manually, by CSV, or by discovering them from Active Directory. Store or fetch credentials securely, test connections before you scan, and run scans on demand or on a schedule through outbound-only agents. Classify privileged access with a rules engine — or pull from a browsable catalogue of predefined rules.

Identities & Accounts

Know who's who — and what they can reach

Sync identities from your source systems, categorise every account as human or non-human, and link accounts to the people behind them. Override a classification where you need to, and track discovered services and the privileged accounts they run as.

Risk, Compliance & Reporting

Turn findings into evidence

Twenty-nine risk indicators — with trends, snapshots and approved exceptions — keep your exposures in view. Twelve report types, all exportable to CSV, cover everything from unowned privileged accounts to accounts missing from your PAM tool. Run a gap analysis across seven frameworks, delegate questions with a secure link, and export to PDF.

Threat Detection (BETA)

Spot privileged-account misuse

Now in Beta. Enrol lightweight Windows sensors, then let twenty behavioural detectors — with machine-learning confidence scoring that retrains on your team's feedback — help surface misuse. Forward alerts by email or CEF syslog into your SIEM.

Platform & Administration

Built for the way you run things

A per-user dashboard, role-based access control, full audit logging, an SDK with API-key management, and on-premise agent management — plus control over branding, email templates and password policy. Enterprise adds SSO/OIDC with JIT and claim-based role mapping.

See OrbisID on your own systems

Download the free Community Edition, or compare editions to find your fit.