"Buried in that tidal wave was news of something called Entra Agent ID, the main idea of which is to use Microsoft Entra to govern AI agents in the same way that Entra currently governs human users; that is, to give each agent a unique, managed identity and apply familiar Entra identity controls such as conditional access, identity governance, and identity protection. Entra is Microsoft's cloud-based identity access management (IAM) solution."
"This idea of "personhood" equivalence for AI agents, as my colleague David Gerwitz described it (see Microsoft's new AI agents won't just help us code, now they'll decide what to code), is also getting some airplay from the OpenID Foundation as well as from Okta, a Microsoft IAM competitor. In the same way that IAM systems like Microsoft's Entra have been traditionally used to provision human users with digital identities and access to business resources,"
AI agent proliferation inside organizations requires identity-based governance to provide visibility and control. Microsoft introduced Entra Agent ID to assign each AI agent a unique, managed identity. Entra applies established identity controls such as conditional access, identity governance, and identity protection to agents. Equating agent identities with human user identities enables consistent provisioning and access management across systems. Industry groups and competitors including the OpenID Foundation and Okta are engaging with the idea of treating agents as identity principals. The approach aims to address both sanctioned agents and unmanaged shadow AI to mitigate access and security risks.
Read at ZDNET
Unable to calculate read time
Collection
[
|
...
]