The Discovery AI tab enables organizations to identify and manage AI usage across connected external systems. This feature helps uncover “shadow AI” — tools and models being used without formal registration or oversight and allows administrators to bring them into the AI Inventory for governance.
This functionality is included in the Teams plan.
Purpose
Discover AI provides visibility into where and how AI is used across your environment.
By connecting to external platforms, RexCommand can automatically detect AI-related activity and surface it for inventory, risk assessment, and approval
Direct AI systems (e.g., Microsoft Copilot Studio) integrate 1:1 and can be added directly to the inventory.
Indirect systems (e.g., source code repositories, SSO platforms, or SaaS monitoring tools such as Microsoft Defender) are analyzed to detect embedded AI functionality. Detected systems can then be reviewed and added to your inventory.
This approach ensures that all AI systems — whether explicitly deployed or introduced through third-party tools — are identified and governed consistently.
Key Features
Connections
View and manage all external system integrations.
The Connections tab lists each integration with details such as type, creation date, and current status (Active/Inactive). You can also deactivate or remove connections as needed.
Add Integrations
Connect RexCommand to external platforms to automatically detect and import AI systems. Supported integrations include:
GitHub – Scan repositories for AI models or projects
Google Cloud Vertex AI – Import AI projects directly into your inventory.
Microsoft Copilot Studio – Connect and manage conversational AI bots.
Hugging Face – Connect to Hugging Face models and import them directly into your AI System Inventory for governance and tracking.
Microsoft Entra ID – Discover AI-enabled applications in your organization
(Okta, Microsoft Intune and Microsoft Defender integrations are coming soon.)
Connection Management
Each integration type includes setup fields (e.g., API keys, access tokens, tenant IDs).
Once configured, you can create, deactivate, or remove connections at any time.
Notes
AI systems discovered through these integrations can be imported into the AI Inventory for registration, risk assessment, and approval.
Direct integrations provide full traceability, while indirect integrations help identify hidden or unauthorized AI usage.
Use this page to maintain comprehensive oversight of AI usage across your organization.
Connection templates vary by integration type; credentials or tokens must be supplied by your administrators.