Aria AI - Settings

Settings

Organization

—

Integrations Health

Security data sources — --

Last health check — --

API response time — --

Data encryption TLS 1.3 in transit · AES-256 at rest Enabled

Data residency Asia South (Mumbai) Compliant

Uptime (30 days) — --

Notifications

Critical alerts

Immediate notification for critical severity

Weekly report

Auto-generate and email weekly summary

Agent actions

Notify when AI agents take automated actions

Breach alerts

New data breaches affecting your domain

Compliance changes

Notify when compliance status changes

Security

Auto-block malicious IPs

Automatically add confirmed threats to firewall blocklist

Auto-isolate endpoints

Allow AI to isolate compromised endpoints

Require MFA

Enforce multi-factor authentication for all users

Session timeout

Auto-logout after inactivity

AI model

Pick the engine for AI agent operations. Cloud models stream from Anthropic; local models run on Aria's L4 GPU in asia-south1 — data never leaves India.

Change Password

Set your own password. You'll need your current one. New password must be at least 8 characters.

Data & Privacy

Data retention

How long to keep security logs

Encrypt logs at rest

AES-256 encryption for stored security data

Share threat intel

Anonymized threat data shared with community

Export org data

Org-wide data export available on request — email dayananda@anthrotech.in. We ship a signed ZIP within one business day.

on request

Delete organization

Organization deletion requires written request to dayananda@anthrotech.in with subject DELETE ORG: <org name>. We respond within 4 hours. Two-admin confirmation required.

written request

🧩 Platform & UX — agentic glue

Unified module shell (topbar · sidebar · right-panel) (T430)

Consistent across aegis / secops / devsec / ai-security / compliance / reports / domain-monitor. Same keyboard behaviour, same theme switching, same avatar/org context.

ROLLED OUT

Global entity-aware search (T431)

Cmd-K · searches user · host · IP · hash · incident · CVE · policy. DSL for power users. Recent-searches + deep-link to the right pane.

ENABLED

Role-based access (viewer / analyst / admin / break-glass) (T432)

Per-module AND per-action permissions. Audit on every sensitive click. Break-glass requires two-person approval + alert.

ENFORCED

Public API + Webhook firehose (T433)

REST · OpenAPI spec · documented event types · retry + dedupe · HMAC signature. Lets SOAR + downstream tools react to every finding.

v2 LIVE

Status page + self-monitor (T434)

Per-ingest lag · rule-last-fired · agent heartbeat. On-call alert when a sensor goes dark. Public status page for customers.

LIVE

Cost / usage panel — cloud · LLM tokens · storage tiers (T435)

Budget alarms · per-module attribution · board-visible. Tracks AI spend vs analyst-throughput delta (T397) to prove ROI.

Cloud infra (30d)

—

loading…

LLM tokens (30d)

—

loading…

LLM calls (30d)

—

routed via Aria router

FX reference

—

INR per USD · conservative

LIVE

Platform audit log + WORM export (T436)

Every admin action · config change · auto-isolation · break-glass use · role change. Hash-chained. 7y retention.
WORM-compliant audit bundle export available on auditor request — email dayananda@anthrotech.in with auditor PGP key.

Events captured

all admin actions

Retention

7y WORM

Integrity

SHA-256 hash-chain

Export format

signed ZIP + manifest

Events (24h)

—

Events (30d)

—

HASH-CHAINED auditor request

Keyboard shortcuts everywhere (T437)

Analyst-productivity primitives. Cmd-K global search. J/K navigate incident list. X select. G then module-key for jump-nav. Full cheat-sheet on ?.

⌘K / Ctrl-Kglobal search

J / Knext / prev incident

Xselect row

Enteropen selected

G Dgo to dashboard

G Sgo to secops

G Ago to aegis

G Rgo to reports

/focus search in pane

?full cheat-sheet

Eexplain-the-alert (copilot)

Iisolate host (confirm)

ENABLED

MCP server — agent-callable (T438)

Every module's safe read-ops exposed as MCP tools for the user's agent (Claude Code · Cursor · internal copilot). Scoped, audited, tool-call interstitials still apply.

aria.graph.query

correlation graph · read-only

aria.lake.search

OCSF data-lake · NL → query

aria.incident.get

fetch incident + timeline

aria.cnapp.findings

cloud posture findings · read

aria.identity.user

user context · sessions · entitlements

aria.ctem.paths

attack-path graph · read

aria.ti.enrich

IOC enrichment from TI fabric

aria.playbook.propose

propose · human interstitial to execute

PUBLISHED

Onboarding wizard — asset → first detection in < 1 day (T439)

Four-step guided setup. Cloud connect → identity → endpoint → first incident. New customer hits their first real detection on day 1.

…

Loading onboarding status…

Checking real signals from API keys · EDR · ledger.

—

DAY-1 READY

✅ Field-Manual Gap-Closure Checklist — 100%

All 167 tasks from the agentic build-checklist are shipped across 8 modules and 30+ new panes. The platform now maps 1-to-1 against the 2026 Field Manual — 7-layer Counter-Manual, 5-tier AI SOC, and all 8 board metrics.

AEGIS · 11 tabs SECOPS · 5 new tabs DEVSEC · 5 new tabs DOMAIN-MONITOR · 1 new tab HUMAN-SECURITY · 4 new tabs AI-SECURITY · 1 new tab COMPLIANCE · 2 new tabs REPORTS · 8 board metrics SETTINGS · 10 platform rows