Discovery

Navigate to Discovery and click Scan Now to trigger a network scan. Agents on enrolled endpoints probe for common services in their local network segments.

Detected Service Types

The discovery dashboard shows summary statistics:

• Total discovered — all services found.
• New — services discovered but not yet reviewed.
• Managed — services already onboarded as resources.
• Ignored / Stale — services you've dismissed or that are no longer reachable.

Filter results by status and service type to focus on what matters. Each entry shows the hostname, port, service type, source (agent or cloud), first-seen and last-seen timestamps.

Click Onboard on a discovered service to create it as a managed resource. OnePAM pre-fills the resource type, host, and port from the scan results. You then assign an endpoint, secret, and group as with any other resource.

To dismiss a service, click Ignore. Ignored services are hidden from the default view but can be revealed by changing the status filter.

Connect cloud provider accounts to discover cloud-hosted services automatically. Supported providers:

• AWS — discovers EC2 instances, RDS databases, and other services.
• Azure — discovers virtual machines, Azure SQL, and managed services.
• GCP — discovers Compute Engine instances, Cloud SQL, and more.

Add an integration by providing the cloud provider, name, region, and credentials. Cloud-discovered services appear alongside network-scanned results and can be onboarded in the same way.