How to Manage HITL Approvals and Agent Tasks

How to Manage HITL Approvals and Agent Tasks

Prerequisites

  • Access to the ZIN AI Copilot
  • At least one AI agent configured and running

    • Understanding HITL Approvals

    When an AI agent wants to perform a sensitive action (e.g., modifying a configuration, creating a risk entry, executing a remediation command), it pauses and requests human approval.

    Risk Levels

    Each approval request is tagged with a risk level:

    Risk LevelColorMeaning
    LowGreenMinor action with minimal impact
    MediumYellowModerate action that could affect systems
    HighOrangeSignificant action with broad impact
    CriticalRedHigh-impact action — review carefully before approving

    Reviewing and Acting on HITL Requests

    Navigation: Sidebar > ZIN Copilot > HITL Approval Modal

    Step 1: Identify Pending Approvals

  • When a HITL request is pending, you will see a notification indicator on the ZIN Copilot.
  • The Agent Task Panel (accessible from the copilot interface) shows tasks with status waiting_human — these need your approval.
  • Click on the pending request to open the HITL Approval Modal.

    • Step 2: Review the Request

    The HITL Approval Modal displays:

  • What the agent wants to do — detailed description of the proposed action
  • Risk Level — low, medium, high, or critical
  • Context — why the agent is proposing this action
  • Expiration — how long before the request expires (if applicable)

    • Step 3: Approve or Reject

    To Approve:
  • Review the action details carefully.
  • Click Approve to allow the agent to proceed.
  • The agent executes the approved action.
    • To Reject:
  • Click Reject.
  • A mandatory rejection reason field appears.
  • Enter why you are rejecting the action (e.g., "Too risky for production environment", "Need to verify with the team first").
  • Click Confirm Rejection.
  • The agent receives the rejection and adjusts its approach.

    • > Warning: For Critical and High risk level requests, take extra time to review. These actions may affect production systems, security configurations, or create irreversible changes.

    Managing Agent Tasks

    Navigation: ZIN Copilot > Agent Task Panel

    The Agent Task Panel shows all AI agent tasks with real-time status:

    StatusMeaning
    PendingTask is queued but not started
    RunningAgent is actively executing the task
    Waiting HumanTask paused — needs your HITL approval
    DoneTask completed successfully
    FailedTask encountered an error

    Viewing Task Details

  • Click on any task in the panel to view its details.
  • See what the agent is doing, what tools it is using, and its progress.
  • For Waiting Human tasks, click to open the approval modal directly.

    • Task Counts

    The panel header shows counts of running tasks and pending approvals, giving you a quick overview of AI activity.

    Chat Session Management

    The ZIN Copilot also supports managing your conversation history:

  • Create new sessions — start fresh conversations
  • Search across chat history
  • Rename sessions for easy reference (e.g., "Q2 Risk Review Discussion")
  • Pin important sessions to the top
  • Delete sessions no longer needed
  • History is grouped by date: Today, Yesterday, This Week, Older

    • Troubleshooting

    IssueSolution
    No HITL requests appearingAgents may be performing low-risk actions that don't require approval, or no agents are currently running tasks.
    Approval request expiredSome requests have time limits. If expired, the agent may have already adjusted or retried.
    Cannot reject without a reasonRejection reasons are mandatory — they help the AI learn and adjust future behavior.
    Agent task stuck on "Running"Complex tasks may take time. If stuck for more than 10 minutes, check the task details for errors.
    Task panel not loadingRefresh the page. Ensure you have ZIN Copilot access permissions.

      • Related Articles

      • How to View and Manage Asset Inventory

        Prerequisites At least one integration connected and syncing under Integrations Access to the Asset Inventory section Accessing Asset Inventory Navigation: Sidebar → Asset Inventory Click Asset Inventory in the sidebar. The page opens with two tabs: ...

      • How to Use the Query Library

        Prerequisites Access to the Query Library section At least one integration connected Accessing the Query Library Navigation: Sidebar → Query Library Click Query Library in the sidebar. The page opens with three tabs. Widgets Tab Manage saved ...

      • Getting Started with Interno

        Prerequisites Before you begin, ensure you have: An active Zeron account with Interno access Admin or Security Analyst role assigned to your profile At least one security tool/integration ready to connect (e.g., Microsoft Defender, CrowdStrike, AWS) ...

      • How to Configure Connectors/Integrations

        Prerequisites Admin access or Integration Manage permission API credentials for the tool you want to connect Network access from Zeron to the external tool's API Connecting an Integration Navigation: Sidebar → Integrations Step 1: Browse Available ...

      • How to Use the Risk Register

        Prerequisites Access to the Risk Register section Understanding of your organization's risk landscape Accessing the Risk Register Navigation: Sidebar → Risk Register Click Risk Register in the sidebar. The risk list page loads showing all risks with ...