# Identity Centric

{% hint style="info" %}
For this mode to be unlocked, at least 2 integrations must be connected to Rezonate.
{% endhint %}

<figure><img src="https://2355086414-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FIkSba0W4HlnmPJ93gVOS%2Fuploads%2FrwCTfE4FbPcoWLYrPWcQ%2Fimage.png?alt=media&#x26;token=721574e7-812e-4cf9-8904-0481e1dc4b59" alt="" width="563"><figcaption><p>Identity Analytics Section</p></figcaption></figure>

### **Human Identities**

a unified view of all of the Human identities, that exist across the different platforms. Rezonate, through its Authorization graph (Identity Storyline), aggregates the different sub-identities associated with each Identity, into 1 unified entity that has attributes, access path, and Risk.

From this view, it's possible to query and ask questions such as:

* Show me all of the users who have access to specific applications
* Show me all of the identities who have high privileges in at least one platform
* Show me all of the identities who have no HR-related record, or are marked as offboarded.

**Selecting an identity we will open a drawer with 3 tabs:**

<mark style="color:purple;">**Properties**</mark> - A summarized information about the identity, including associated emails, names, and other useful information collected across the board. for example -when selecting Michael Scott's identity we will see that he's known by a few names such as Michael Scott, ScottTrexony, and others. We can also see the creation date of the identity and note that he last signed in 3 days ago.

<figure><img src="https://kb.rezonate.io/~gitbook/image?url=https%3A%2F%2F2355086414-files.gitbook.io%2F%7E%2Ffiles%2Fv0%2Fb%2Fgitbook-x-prod.appspot.com%2Fo%2Fspaces%252FIkSba0W4HlnmPJ93gVOS%252Fuploads%252FBiDouNiaLsY9g62SV9IC%252Fimage.png%3Falt%3Dmedia%26token%3Def5322e2-1dcc-4c1d-93ba-6be32881c692&#x26;width=768&#x26;dpr=4&#x26;quality=100&#x26;sign=e08053c19d6962f053d4b1d0403ffabe09a9414a8b8dd73aa46618643dc98246" alt="" width="563"><figcaption><p>Michael Scott Entity Properties</p></figcaption></figure>

By Clicking the Devices, we can also see all of the Registered Mobile or endpoint devices that he ever used to operate in the environment. clicking on them will show additional information, such as device-state, and serial numbers.

<figure><img src="https://kb.rezonate.io/~gitbook/image?url=https%3A%2F%2F2355086414-files.gitbook.io%2F%7E%2Ffiles%2Fv0%2Fb%2Fgitbook-x-prod.appspot.com%2Fo%2Fspaces%252FIkSba0W4HlnmPJ93gVOS%252Fuploads%252F9X8kJen8zi8bo8TYx4aA%252Fimage.png%3Falt%3Dmedia%26token%3Da71a26d9-c263-4049-8910-3c47a0b499df&#x26;width=768&#x26;dpr=4&#x26;quality=100&#x26;sign=796a2f1bd2af4d7f010f01b486dbd81ce4dfcb510ae83a999779d0c36883d1e1" alt="" width="563"><figcaption><p>Michael Scott Devices View</p></figcaption></figure>

<mark style="color:purple;">**Identity Storyline -**</mark> A Visual Representation that describes the access that the identity has to the environment, taking into consideration federated access, and tenant configurations. \
\
for example, below we can see that Michael has access to a **Google** **Workspace** account through **Okta** and that he has federated access to **5 AWS Accounts**, managed through **EntraID** SSO. we can also that Michael has access to additional products such as GitHub, Snowflake, and others.&#x20;

<figure><img src="https://2355086414-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FIkSba0W4HlnmPJ93gVOS%2Fuploads%2FRFl7MYWmDDEWXBABSbxj%2Fimage.png?alt=media&#x26;token=52d36a2f-b630-40b2-bd84-375955dffbab" alt=""><figcaption><p>Michael Storyline view</p></figcaption></figure>

By Selecting an item on the graph, we can View his storyline and deep-dive into his access path, or alternatively, we can View entity details to see expanded properties, privileges, and activity information

&#x20;

<figure><img src="https://2355086414-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FIkSba0W4HlnmPJ93gVOS%2Fuploads%2Fcatp6MfAaNBGmcq3WEXM%2Fimage.png?alt=media&#x26;token=7a25db73-07a9-4bb0-bb6a-b44b3a6a303e" alt="" width="375"><figcaption></figcaption></figure>

<mark style="color:purple;">**Security Risks -**</mark> an aggregated risks & threats view for Michael Scott entities, including their risk-level, status, and ability to drill down for more information.

<figure><img src="https://2355086414-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FIkSba0W4HlnmPJ93gVOS%2Fuploads%2FwgkuuORJ8MzynxN7v0ep%2Fimage.png?alt=media&#x26;token=ceecaf18-b238-485a-949e-9800777e7c22" alt=""><figcaption></figcaption></figure>

***

### **Non-Human Identities (NHI's)**

A unified view of all of the Non-human identities, that exist across the different platforms. Rezonate Aggregate those identities by general type according to the following categories:

* Access Keys
* Service Accounts
* Access Tokens
* IAM Roles

By selecting a category we will see the different entities associated with it, including their risk level, number of identities, and associated accounts. by clicking a row we can pivot to the relevant entity page for more information.

<figure><img src="https://kb.rezonate.io/~gitbook/image?url=https%3A%2F%2F2355086414-files.gitbook.io%2F%7E%2Ffiles%2Fv0%2Fb%2Fgitbook-x-prod.appspot.com%2Fo%2Fspaces%252FIkSba0W4HlnmPJ93gVOS%252Fuploads%252FXBhLculEIdiMUorRalFA%252Fimage.png%3Falt%3Dmedia%26token%3D7a685b59-b8e1-476c-8905-616fef41521f&#x26;width=768&#x26;dpr=4&#x26;quality=100&#x26;sign=355ea01577f6bcf6ac08d081df9daacacf2b4e65ee00dc1dbdde6753937a141c" alt=""><figcaption><p>NHI Section</p></figcaption></figure>