Amplifier Findings by Security Integration Vendor
For each security integration, Amplifier generates findings based on the vendors’ recommended user security related risks, gaps and alerts.
Findings identify what risky user posture or activity should be tracked using the data provided by our integrations.
Amplifier offers the following native findings based on integrated vendors’ default policies. These findings are enabled by default and require no further configuration. You can also create custom findings from any external platform (eg. SIEM, MDR) to detect anomalous user activity using webhook based triggers that you have set up in those platforms.
Okta
MFA Not Enabled
MFA Not Secure
User Is An Executive
User Has Priviledge Access
User Has Production Access
Password Change Failed
Access Request Grant
Access Request Denied
MFA Factors Deactivated
Account Locked Out
Privilege Access Granted
User Reset Password
MFA Not Enabled
MFA Not Secure
User Is An Executive
User Has Priviledge Access
User Has Production Access
Microsoft Entra
MFA Not Enabled
MFA Not Secure
User Is An Executive
User Has Priviledge Access
User Has Production Access
Crowdstrike
Endpoint Protection Missing
Device CheckIn Overdue
Critical Vulnerability Out of SLA
High Vulnerability Out of SLA
Medium Vulnerability Out of SLA
Low Vulnerability Out of SLA
SentinelOne
Endpoint Protection Missing
Device CheckIn Overdue
Critical Vulnerability Out of SLA
High Vulnerability Out of SLA
Medium Vulnerability Out of SLA
Low Vulnerability Out of SLA
Tenable
Endpoint Protection Missing
Device CheckIn Overdue
Critical Vulnerability Out of SLA
High Vulnerability Out of SLA
Medium Vulnerability Out of SLA
Low Vulnerability Out of SLA
Rapid7
Endpoint Protection Missing
Device CheckIn Overdue
Critical Vulnerability Out of SLA
High Vulnerability Out of SLA
Medium Vulnerability Out of SLA
Low Vulnerability Out of SLA
Jamf
Endpoint Protection Missing
Device CheckIn Overdue
Firewall Disabled
Screensaver Disabled
Device Not Encrypted
Kandji
Endpoint Protection Missing
Device CheckIn Overdue
OS Update Available
Software Update Available
Automox
Endpoint Protection Missing
Device CheckIn Overdue
Carbon Black
Endpoint Protection Missing
Device CheckIn Overdue
Critical Vulnerability Out of SLA
High Vulnerability Out of SLA
Medium Vulnerability Out of SLA
Low Vulnerability Out of SLA
Workspace One
Endpoint Protection Missing
Device CheckIn Overdue
Microsoft Intune
Endpoint Protection Missing
Device CheckIn Overdue
Microsoft Defender
Endpoint Protection Missing
Device CheckIn Overdue
Critical Vulnerability Out of SLA
High Vulnerability Out of SLA
Medium Vulnerability Out of SLA
Low Vulnerability Out of SLA
KnowBe4
Failed Phishing
Training Overdue
Litmos
Training Overdue
Proof Point
Top Clicker
Very Attacked Person
Qualys
Endpoint Protection Missing
Device CheckIn Overdue
Critical Vulnerability Out of SLA
High Vulnerability Out of SLA
Medium Vulnerability Out of SLA
Low Vulnerability Out of SLA
Rapid7
Endpoint Protection Missing
Device CheckIn Overdue
Critical Vulnerability Out of SLA
High Vulnerability Out of SLA
Medium Vulnerability Out of SLA
Low Vulnerability Out of SLA
SentinelOne
Endpoint Protection Missing
Device CheckIn Overdue
Critical Vulnerability Out of SLA
High Vulnerability Out of SLA
Medium Vulnerability Out of SLA
Low Vulnerability Out of SLA
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article