I apologise if I am missing something here, but does Boundry have any services/privilege account discovery features? Meaning, can Boundry (or agents) crawl your network looking for servers with unVaulted local root/Administrator accounts and alert you when it discovers those credentials are not managed by Boundry/Vault?
And if Boundry doesn’t offer this feature now, are there plans for this as a feature in the future? And, how are companies with Boundry handling this in the interim?