# Identities Entitlements Discovery

## Overview

In this article we will explain how to use the **Identities** page for entitlement discovery. Here you will see a list of all the identities in your BalkanID environment, which includes employees, service accounts, and unmapped identities. You can use the filter menu or search bar to drill down for individual identities or groupings of identities, such as identity types, departments, or managers.&#x20;

Keep in mind that **this a list of application identities**, **not employees or service accounts**, and **multiple identities are often tied back to one employee or service account**.

To navigate to the **Identities** page follow the below steps:

1. Click on *Entities* from the lefthand navigation sidebar to open the drop down.
2. Select the *Identities* page from the drop down.

You can view the various identities associated with different applications.

<figure><img src="https://content.gitbook.com/content/bVGYwk8aSk5yI1GDPEW9/blobs/ry3wwCFD1l2lVhyycwl6/image.png" alt=""><figcaption></figcaption></figure>

You can use the search box and filters to explore the applications integrated. The following filter fields are available for this page:

* **Identity** - This field filters data based on the specific identity within an application. **For example,** to view information about *r-droid101* in the GitHub(test) integration, use "*r-droid101 (github test)"* as a filter in this field.
* **Identity type** - You can filter your identities based on a user being an *employee*, *service account* or an *unmapped* identity.
* **Status** - You can filter your identities based on whether the identity is active or inactive.
* **Identity Name** - This field filters data based on the name of the identity irrespective of the application integration type. **For example,** to view information about *raggav* identity in all AWS integrations, enter the filter in this field.
* **Person** - You can use this filter to look for identities that belong to a particular employee. **For example,** to see all the identities that belong to an employee *Alice,* select *"Alice"* as a filter in this field.
* **Application - This field filters based on the specific Application Integration that you would like to explore. For example, to view identities within&#x20;*****Azure(Test Environment)*****&#x20;data, add it as a filter in this field.**
* **Connection  - This field allows you to filter data based on a connection in an application. For example, to view all identities associated with the&#x20;*****admin*****&#x20;connection in a&#x20;*****group*****&#x20;connection type within** *Confluence,* add it as a filter in this field.
* **Connection Type - This field filters data based on the type of connections available. For example, to view all the identities that belong to a&#x20;*****group*****&#x20;connection type, add it as a filter in this field.**
* **Resource** - This field is used to filter out identities which have privileges to a resource. **For example,** to view all the identities that have access to the sales vault in 1password, pass *"1password/vault/sales"* as a filter in this field.
* **Resource Type** - This field is used to filter out identities which have privileges to a resource type. **For example**, to view all the identities that have access to different vaults in 1password, pass *"1password/vault"* as a filter in this field.
* **Insights - Filtering with insights allows you to see which identities have insights on them. For example, to view the identities which are&#x20;*****Privileged*****, you can add&#x20;*****"Privileged"*****&#x20;as a filter in this field.**&#x20;
* **Manager** - You can filter identities based on the manager of the employee that this identity is tied to. **For example,** to find all the identities associated with employees managed by *Sameer Sait*, add him as a filter in this field.
* **Job Title** - You can filter identities based on the job title of the employee that this identity is tied to. **For example,** to find all the identities associated with employees with the job title as *ML Engineers*, add it as a filter in this field.
* **Department -** You can filter identities based on the department that the employee belongs to. **For example**, to find all the identities associated with employees in the *Engineering* department, add it as a filter in this field.
* **Employment Type** - You can filter identities based on the employment type of the employee that this identity is tied to. **For example,** to find all the identities associated with "*part-time intern"* employees, add it as a filter in this field.
* **Permission** - The Permission field allows you to filter identities based on the permission they have to a resource. **For example,** to view all identities which have *read* permission on repositories in *GitHub*, add *"github/read"* as a filter in this field.
* **Permission Value** - The Permission value field allows you to filter identities based on the permission value they have to a resource. **For example,** to view all identities which have *true* permission value, add it as a filter in this field.

Using multiple filter fields together will help you navigate through the data swiftly and will make your time spent on discovering entitlements a lot more productive! Refer to [working with filters](https://docs.balkan.id/getting-started/entitlement-discovery/working-with-filters) to learn more about filters.

## Viewing Individual Identity page: <a href="#h_01hprex13w8ejd3rc78h0tb0xn" id="h_01hprex13w8ejd3rc78h0tb0xn"></a>

Clicking on an identity will bring up more information about their entitlements. You can use a similar filter menu to sort by the permissions, groups, or resources that this identity has access to.&#x20;

<figure><img src="https://content.gitbook.com/content/bVGYwk8aSk5yI1GDPEW9/blobs/cDSjsMY42bg6XvtKIJG6/image.png" alt=""><figcaption></figcaption></figure>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.balkan.id/getting-started/entitlement-discovery/identities-entitlements-discovery.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.