Overview
Overview summarizes the last 30 days of observed provider activity and shows:- the providers with the most activity
- a decision queue for newly discovered providers that still need a sanction state
- policy review progress over the last 14 days
- reporting coverage for active directory users
Users
Users groups provider rollups by stamped identity. Expand a person to see their providers, request counts, sanction states, blocked attempts, and recent daily activity. The Coverage gaps tab lists active SCIM users with no Oriant rollup in the last 30 days. A coverage gap means Oriant has no recent proxy report for that directory user; it does not prove that the user has not used AI tools.Assets and device evidence
Assets lists enrolled machines with their stamped identity, hostname, enrollment date, last heartbeat, and device status:
Open an asset to review the latest device evidence snapshot. Evidence can show
installed AI agents, MCP server entries, and the names of AI credential
variables. Oriant does not collect the values of those credentials.
Directory
Directory shows SCIM-synchronized users and groups. To connect an identity provider:- Open Settings → General.
- In SCIM Provisioning, generate a bearer token.
- Copy the SCIM base URL and token into your identity provider.
Exports
The Export menu is available from the dashboard header. Choose Inventory CSV or Audit pack (.zip), then export the last 7, 30, or 90 days, or all time. The audit pack contains:ai-tools-inventory.csvwith providers, sanction state, reach, request volume, blocked count, and device-evidence indicatorsendpoint-evidence.csvwith the latest device snapshots, detected AI agents, MCP servers, and credential variable namesREADME.txtdescribing the files and the data-minimization boundary