AshLab | Platform Setup
← Platform Status Dashboard
1. AI Platforms
2. LLM Inventory
3. Known MCPs
4. Connectors
5. Posture Summary

Which AI platforms does your organisation use?

Select all that apply. AshLab will only configure dashboards, governance controls, and telemetry for what you select — everything else stays hidden.

You can change this at any time from Settings.

Data collection method: 📡 GATEWAY Route through AshLab proxy — full telemetry (prompt, response, tokens) 🖥️ CONSOLE Pull from vendor admin API — usage/cost only, no prompt content ⚡ NATIVE Platform-embedded AI — vendor API provides platform-specific events only ✅ BOTH Gateway for model calls + console for platform events
Microsoft AI
📊
Microsoft 365 Copilot
Word, Excel, Teams, Outlook, PowerPoint AI
🖥️ CONSOLE Graph API · no gateway possible
🐙
GitHub Copilot
IDE completions, Chat, CLI suggestions
🖥️ CONSOLE GitHub REST API · IDE-native, no proxy
🤖
Microsoft Copilot Studio
Low-code agent builder · Dataverse-backed
🖥️ CONSOLE Log Analytics + App Insights
🏭
Azure AI Foundry / OpenAI
Prompt Flow, Azure OpenAI deployments, AI Studio
✅ BOTH Model calls → gateway · flows → console
OpenAI / Anthropic
🧠
OpenAI / ChatGPT API
GPT-4o, o1, custom integrations via API key
📡 GATEWAY Route all calls through AshLab
🔶
Anthropic Claude API
Claude 3.5 Sonnet, Opus, Haiku via API key
📡 GATEWAY Route all calls through AshLab
Google AI
💎
Google Gemini / Vertex AI
Gemini API, Vertex AI models, PaLM
📡 GATEWAY Route all calls through AshLab
📁
Google Workspace Gemini
Docs, Sheets, Gmail AI · Workspace Admin
🖥️ CONSOLE Workspace Admin API · embedded, no proxy
Cloud Agent Builders
☁️
AWS Bedrock Agents
Bedrock Agents, Knowledge Bases, Action Groups
✅ BOTH Model calls → gateway · traces → CloudWatch
☁️
Salesforce Agentforce
Einstein Copilot, Agentforce, Trust Layer
⚡ NATIVE SOQL via Connected App · platform-embedded
❄️
ServiceNow Now Assist
ITSM, HR, Field Service AI skills
⚡ NATIVE Table API · platform-embedded, no proxy
Open-Source Frameworks & Custom Agents
🦜
LangChain / LangGraph
OSS agent framework · traced via LangSmith
📡 GATEWAY Set LANGCHAIN_ENDPOINT to AshLab
⚙️
Custom / In-House AI Agents
Home-grown agents calling LLM APIs directly
📡 GATEWAY Use AshLab bridge endpoint
Nothing selected yet. Click any platform above to declare it. You can always add more later from Settings → Platform Config.
0 platforms selected

What LLMs does your organisation use?

Help AshLab understand which language models are in use. This builds your LLM inventory — the foundation of your AI posture and security deep dive. You can provide a repository URL (auto-refreshed daily) or simply paste model names manually.

Every interaction is logged with the exact model name — your inventory lets AshLab flag when agents use undeclared models, a key security signal.

⚡ Quick add — click to toggle common models:

Do you use any known MCP servers?

Model Context Protocol (MCP) servers extend your AI agents with tools, knowledge, and external connections (file system, browser, databases, APIs). Declaring known MCPs gives AshLab the context to detect unknown or unauthorised MCP connections — a key security posture signal.

Security Deep Dive: AshLab captures mcp_server_id, tool_calls, and connection_id for every MCP interaction. Undeclared MCPs appear in Vendor Management → Discovered Items and can be individually alerted or blocked — without blocking the underlying LLM.

You can also add custom MCPs — AshLab will discover additional ones automatically from network traffic and agent telemetry.

Common MCP Servers — select all that apply:
+ Add additional MCPs (one per line):

Do you use any known AI connectors?

AI connectors bridge your AI agents to business systems — SharePoint, Dynamics, SAP, Salesforce, databases, and APIs. Knowing which connectors are sanctioned helps AshLab flag when agents access unexpected data sources.

Security Deep Dive: AshLab discovers connectors from Copilot Studio agent definitions (Dataverse) and live telemetry metadata. Connectors not in this declared list are flagged as undeclared data access — a key signal for data exfiltration detection in the coming Security Deep Dive tab.

Anything agents are allowed to read from / write to — files, APIs, databases, email — should be listed here.

Common Connectors — select all that apply:
+ Add additional connectors (one per line):
Anything agents or Copilots are allowed to read from / write to — files, APIs, databases, email.
🏛️

Your AI Posture

AshLab now knows where your organisation stands. Here's your declared posture — this is your baseline for governance and security.

🏢 AI Platforms 0

🧠 LLM Inventory 0

🔌 Known MCPs 0

AshLab will alert on any MCP connections NOT in this list.

🔗 Known Connectors 0

AshLab will flag data access outside these sanctioned connectors.
Initial AI Posture Score
Complete all steps to see your score
Scored by tier: gateway platforms score higher (full telemetry). More LLMs/MCPs/connectors = stronger posture baseline.
30pts max
Platforms
(weighted by tier)
25pts max
LLM inventory
(repo=25, manual=20)
25pts max
Known MCPs
(5pts each)
20pts max
Connectors
(4pts each)
Complete steps above to see Security Deep Dive readiness.

📋 Next Steps

1. Go to each dashboard (GitHub Copilot, Gemini, etc.) and complete the ⚙️ Configure tab to connect credentials — this raises your observability score from 0.
2. Go to 🏢 Vendor Management to see observability scores per platform — registered vs discovered items, and what gaps remain.
3. The Security Deep Dive feature (coming soon) will use all collected telemetry — client IP, session IDs, MCP server IDs, tool calls — to run anomaly detection across your entire AI footprint.
🏢 View Vendor Posture → → Main Dashboard 🔐 MCP Governance