Zscaler Identity Protection is an identity threat detection and response (ITDR) solution that provides continuous monitoring of enterprise identity infrastructure to detect and respond to identity-based attacks. The product is built into Zscaler Client Connector, a lightweight endpoint agent. The solution provides visibility into identity misconfigurations, risky permissions, and exposed credentials across identity systems including Active Directory. It performs identity security assessments with risk scoring to quantify identity posture and tracks vulnerabilities in real time. The product detects identity-based attacks including DCSync, DCShadow, kerberoasting, and LDAP enumeration. It monitors configuration and permission changes in identity systems and provides alerts when new risks are introduced. The solution identifies insecurely stored credentials across endpoints and analyzes passwords for compromise, leaks, or weakness. Remediation guidance is provided through video tutorials, scripts, and commands to address identified issues. The product maps findings to the MITRE ATT&CK framework for visibility into attack paths and techniques. Integration capabilities include native connections with Zscaler Private Access for containment actions, SIEM platforms for SOC workflow integration, and EDR solutions for coordinated response to identity threats.