Users

Users

List view

Quick Start
Welcome
Console & Settings
Release Notes
October 9, 2025 WitnessAI Update
October 23, 2025 WitnessAI Update
October 2, 2025 WitnessAI Update
September 30, 2025: WitnessAI Update
September 23, 2025: WitnessAI Update
August 12, 2025: WitnessAI Update
July 31, 2025: WitnessAI Update
July 18, 2025: WitnessAI Update
June 23, 2025: WitnessAI Update
June 9, 2025: WitnessAI Update
April 11, 2025: WitnessAI Release v2.0
Copy August 12, 2025: WitnessAI Update
Supported Applications & LLMs
User Guide
Lists - OLD
Private Applications
Home
Discovery
Discovered Apps
App Catalog
Analytics
Conversations
Users
Alerts
Policies
Lists
Settings
Configuration
Access Control
System
Secure AI Portal
User Menu
Policies & GuardRails
Policy Creation
Policy Precedence
GuardRail: Behavioral Activity
GuardRail: Data Protection
GuardRail: Harmful Response Prevention (Beta)
GuardRail: Model Identity Protection
GuardRail: Model Protection
GuardRail: Organizational Behavior (Beta)
GuardRail: Risk Analysis
Witness Anywhere: Remote Device Security
Witness Anywhere Overview
Witness Anywhere with Stunnel
Witness Anywhere: Azure VDI - Intune
Witness Anywhere: CrowdStrike (Windows)
Witness Anywhere: GPO (Windows)
Witness Anywhere: Jamf (macOS) (Beta)
Witness Anywhere: SentinelOne
Witness Anywhere: FAQ
Witness Attack
Witness Attack: AI Red Teaming 
Administrator Guide
Integrations: Identity Providers
Identity: Microsoft Entra ID (Azure AD)
Identity: Okta Identity
Integrations: Network Security
Netskope SWG
Palo Alto Networks NGFW
Prisma Access: DNS Sinkhole
Prisma Access: Explicit Proxy
Zscaler Internet Access
Zscaler Beta
Status Page
API Reference
Input API
Complete API
Text-Completion API
Prompt-Protect API
Encryption
 

Conversations by Users

The Users page provides visibility into individual user activity within AI models and applications. It provides insight into which users are interacting with specific models, as well as their intentions, usage patterns, and risk profiles.
The importance of this feature lies in its ability to investigate user-specific behaviors and ensure compliance with company policies and security requirements.
notion image

Step-by-Step Instructions

Filtering Users Conversations

  1. Access the Users page from the sidebar menu.
  1. You will see a list of all recent conversations, grouped by users.
  1. Use the Date Range drop-down to choose the date range, and the Group drop-down to filter Users by Groups.

Sorting the Table

The header of each column can sort the table, just click the header and the table will sort. Click the header again and the table will sort in the reverse order.
notion image
  1. Click the Date column, and the conversations will sort from the earliest dates (least recent) at the top, to the latest dates (most recent) at the bottom.
  1. Try the filter icon for each column (the inverted pyramid of lines). Each column’s filter has relevant filter options for the data in that column.
  1. Now click the drop-down arrow to see the filter options.
  1. Try this for the other columns to get familiar with the rest of the column filters.
notion image

Investigating User Conversations

Now let’s try an investigation workflow.
  1. First sort or filter by the Risk column, so the High Risks are all together
  1. Now I see a Conversation with 18 prompts and responses, with a High Risk. Let’s click on that!
notion image
  1. Clicking on the row opens the Conversations page in a new browser tab (image below), filtered to that specific Conversation. You can see the filter is active by a line just above the table:
      2. Users… > All conversations by ml-gurus+dev@witness.ai
  1. Now you can investigate on the Conversations page.
  1. Clicking a line on the Conversations table shows more details in the pane at the bottom of the page.
  1. Hovering over the prompt (3) circled in below, shows a blue Analyze risk link. Clicking on this link shows the Risk Analysis sidebar (4) on the right side of the page.
notion image
  1. Clicking on the Triggered Policy name link: Seth’s Fortinet Warn Policy - v2 (5) opens the associated Policy page with Seth’s policy already open.
  1. Clicking on the Conversation link: write a python program to connect to rest API (6) opens it in the page.