How to Run a User Access Review

How to Run a User Access Review

The User Access tab in Asset Inventory lets you review which users have access across your connected systems, and check coverage for any individual user — useful for access reviews, joiner/mover/leaver checks, and audit evidence.

What you'll need: Identity/access sources connected (e.g., Active Directory, Okta, Microsoft 365) and access to Asset Inventory.

Open User Access Review

  1. In the sidebar, click Asset Inventory.
  2. Select the User Access tab.

User Access Review (the matrix)

  • Each row represents a user; columns show where that user has access across connected systems.
  • Use search and the page controls to move through users.
  • Use it to spot over-provisioned accounts or access that should have been removed.

User Access Coverage (per user)

  1. Select a user (by email) in the review list.
  2. The User Access Coverage view shows that user's access footprint in detail.

Tips

  • Run periodic reviews (e.g., quarterly) and export findings via Reports for audit evidence.
  • Cross-check leavers against the matrix to confirm de-provisioning.

Troubleshooting

IssueWhat to do
No users shownConnect at least one identity source (AD, Okta, M365) and let it sync.
A user's coverage looks incompleteCoverage reflects connected sources only. Connect the relevant systems to see full access.

Related: How to View and Manage Asset Inventory.

Need more help? Contact support@zeron.one.

    • Related Articles

    • Interno: Roles & Permissions Reference

      This guide lists the permission scopes that control access to each part of Interno (the Zeron Command Center). Interno scopes use the defence: prefix. This page covers Interno only. For the complete cross-product reference — every product's scopes, ...

    • How to Set Up Alerts and Evidence Queries

      Prerequisites Access to the Query Library section At least one integration connected and syncing For Evidence Queries: knowledge of your compliance framework's control identifiers Evidence Queries Navigation: Sidebar > Query Library > Evidences Tab ...

    • How to Set Up Morning Briefings

      Prerequisites Access to the ZIN Copilot At least one integration connected (for data-driven briefings) Your user role properly configured (CISO, Analyst, or GRC) Available Briefing Types Briefing Target Audience Focus Areas CISO Briefing CISOs, VP ...

    • Troubleshooting Common Issues in Interno

      This guide covers common issues in Interno (the Zeron Command Center) and how to resolve them. Login & Permissions Many "I can't see/do X" issues are missing permission scopes (Interno scopes use the defence: prefix). A user without the required ...

    • How to Use the Risk Register

      Prerequisites Access to the Risk Register section Understanding of your organization's risk landscape Accessing the Risk Register Navigation: Sidebar → Risk Register Click Risk Register in the sidebar. The risk list page loads showing all risks with ...