Every feature your CMDB needs, nothing it doesn't

IT asset tracking with dependency mapping

Every kind of IT asset modelled with purpose-built fields.

Kovira ships a comprehensive set of configuration item types covering devices, networks, WAN circuits, services, racks, locations, domains, software, licences, SLAs, vendors, contracts, people, groups, passwords, APIs, documents, incidents, and changes. Each CI type has its own set of fields that actually matter for that type of asset, so you are not filling in irrelevant metadata just to satisfy a generic form.

Every CI can be linked to other CIs through typed relationships, which means you can see exactly how a switch failure would ripple through your network, or which contracts are tied to which vendor, or what services depend on a particular server. The dependency map is interactive and visual, not a flat table you have to squint at.

ITSM workflow automation

Visual builder, broad trigger surface, real action library, full execution audit.

Kovira ships a visual workflow builder for multi-step approvals, conditional branches, delayed steps, retries, and quantified checks across collections of CIs. Trigger surface covers what IT teams actually wire up: CI changes, incident lifecycle events, SLA events (at risk, breached, paused, resumed), scheduled intervals, manual dispatch, and incoming email when a monitored mailbox is connected.

The action library is wide enough that you do not have to leave the platform for everyday automation. Send email through a managed sender, update CIs, create incidents, transition SLA timers, call any external webhook, and run data transforms (regex extract, string operations, JSON shape) over the run scope so later steps act on cleaned-up values rather than raw payloads. Failed actions retry on a backoff; concurrency controls stop the same workflow firing twice on the same event.

Built-in system workflows handle the table-stakes notifications out of the box: ticket created, ticket assigned, SLA at risk, and SLA breach all email the right people without you wiring it up. Every run produces a per-step execution log with input, output, and error captured, so you can trace exactly what happened and why.

VECTOR network scanner and ATLAS endpoint agents

Automated discovery from the network and every endpoint, with real physical topology.

Point VECTOR at a subnet and it finds the devices, maps how they connect, and keeps your CMDB current. Routers, switches, firewalls, servers, workstations, printers, and IoT all surface as CIs, with no agent required on the scanned devices.

VECTOR also pulls the physical-network detail most network tools skip. Port-level connectivity from your managed switches shows which device is plugged into which port, and the platform tracks where each device has been seen on the network so you can answer the reverse question: where on the network is this device today? Topology stops being an arrows-and-boxes diagram somebody redrew once and starts being something the CMDB can answer.

ATLAS covers the endpoint side. It runs on Windows and Linux machines and reports hardware specs, installed software, and security posture, so endpoint inventory stays accurate without anyone chasing it. Both VECTOR collectors and ATLAS endpoints can be paused, resumed, or uninstalled centrally from the workspace, and heartbeats flag any agent that goes silent. Both are included in every plan, including the free tier.

Microsoft 365 integration

Sync users, groups, and devices from Entra ID and Intune.

If you are running Microsoft 365, Kovira can pull your users, security groups, directory roles, and managed devices straight from Entra ID and Intune. The sync runs in the background, so your CMDB stays current without anyone having to manually update records when someone joins, leaves, or gets a new laptop.

The data flows into the same CI model as everything else, which means you can see an employee, the device they are using, the groups they belong to, and the services they have access to, all in one place. Synced records are correlated with VECTOR and ATLAS data automatically.

Tenant isolation, role-based access control, and recycle bin

Database-level isolation, per-member RBAC overrides, and a soft-delete safety net for CIs.

Kovira was built with tenant isolation from the start, not bolted on later. Every organisation's data is separated at the database level, and the application layer enforces tenant context on every single query. There are no admin backdoors, no shared tables, and no ways for one tenant's data to leak into another. On the MSP plan, the same isolation extends across many client workspaces in one account: each workspace is fully isolated while technicians can switch between them without logging out.

Role-based access control gives you four base levels (Owner, Admin, Editor, Viewer) plus per-member overrides for the cases that do not fit a role cleanly. A specific user can be granted a permission above their role or have one revoked below it without changing the role itself, so you can keep the model clean and still handle the contractor who needs read-only access to one workspace section.

Deleted configuration items move into a recycle bin instead of being removed outright. From there you can restore the record back to its prior state or purge it permanently when you are sure. Recycled CIs do not count against your plan’s CI limit while they sit in the bin.

ITILv4 CMDB tool built for practice, not theory

Structured around the ITIL practices that matter most.

Kovira is structured around the ITIL practices that matter most to growing IT teams: Service Configuration Management, Change Enablement, Incident Management, Problem Management, IT Asset Management, and Service Request Management.

This is not a generic project management tool with ITIL labels slapped on it. The data model, the workflows, the permission structure, and the reporting are all designed around how ITIL actually works in practice. If you are working towards ITIL maturity, or you already follow ITIL and need a CMDB tool that does not fight you, Kovira is built for that.