|
| 1 | +--- |
| 2 | +title: Protect AI agents |
| 3 | +description: Learn how Microsoft Defender protects AI agents from security threats. Learn about agent inventory, real-time protection, and threat hunting capabilities. |
| 4 | +ms.service: defender-xdr |
| 5 | +ms.author: abbyweisberg |
| 6 | +author: AbbyMSFT |
| 7 | +ms.topic: article |
| 8 | +ms.date: 11/20/2025 |
| 9 | +appliesto: |
| 10 | + - Microsoft Defender for XDR |
| 11 | + - Microsoft Defender for Cloud Apps |
| 12 | + - Microsoft Defender for Cloud |
| 13 | + |
| 14 | +#Customer intent: As a security administrator, I want to protect my organization's AI agents from security threats and maintain visibility into agent activities and configurations. |
| 15 | +--- |
| 16 | + |
| 17 | +# Protect your AI agents (Preview) |
| 18 | + |
| 19 | +As organizations embrace AI agents to streamline operations and enhance productivity, they also face new security risks that these tools can introduce. |
| 20 | + |
| 21 | +Without strong visibility and controls, misconfigured AI agents can expose sensitive data, enable unauthorized access, escalate privileges, and trigger unintended actions that weaken your organization’s security posture. |
| 22 | + |
| 23 | +To provide comprehensive threat protection, we include both posture management to minimize the attack threat landscape, while at the same time we operate under the assumption that a breach can occur. |
| 24 | + |
| 25 | +## AI agent protection features |
| 26 | +Microsoft Defender protects you against security threats with comprehensive AI agent protection, offering proactive exposure management and advanced threat hunting with these features: |
| 27 | + |
| 28 | +- Detects all of your AI agents created with Microsoft Copilot Studio or Azure AI Foundry. |
| 29 | +- Collects audit logs for your AI agents, continuously monitors the agents for suspicious activity, and enables detections and alerts. To enable this monitoring, make sure that you: |
| 30 | + - [Enable the AI agent inventory](#discover-your-ai-agents-with-the-ai-agent-inventory-in-the-defender-portal-preview). |
| 31 | + - [Enable the Microsoft 365 connector](/defender-cloud-apps/protect-office-365#connect-microsoft-365-to-microsoft-defender-for-cloud-apps). |
| 32 | +- For Copilot Studio AI agents, Microsoft Defender: |
| 33 | + - Integrates data from Copilot Studio AI agents into [advanced hunting](advanced-hunting-overview.md) for proactive threat detection. You can use this data to create custom queries and hunt for potential threats. |
| 34 | + - [Protects your environment in real-time](/defender-cloud-apps/real-time-agent-protection-during-runtime) to block suspicious or harmful actions initiated by your Copilot Studio AI agents during agent runtime, and triggers an informative alert integrated into the XDR incidents and alerts environment. |
| 35 | +- For Azure AI Foundry AI agents, Microsoft Defender: |
| 36 | + - Monitors your AI agents for misconfigurations and vulnerabilities, and identifies potential attack paths. |
| 37 | + - Provides security recommendations to improve the security posture of your AI agents. |
| 38 | + |
| 39 | +## Prerequisites |
| 40 | +To enable AI agent inventory and detection you must opt in to the [Microsoft Defender preview features](https://security.microsoft.com/securitysettings/defender/preview_features) of: |
| 41 | +- Microsoft Defender for Cloud Apps |
| 42 | +- Microsoft Defender for Cloud |
| 43 | +- Microsoft Defender XDR |
| 44 | + |
| 45 | +## Discover your AI agents with the AI agent inventory in the Defender portal (Preview) |
| 46 | + |
| 47 | +Microsoft Defender detects all of the AI agents created with Microsoft Copilot Studio and Azure AI Foundry. This inventory helps security teams discover, catalog, and continuously monitor AI agents across your organization. |
| 48 | + |
| 49 | + - To set up AI agent inventory for agents created in Coplot Studio, see [Discover and protect your AI Agents (Preview)](ai-agent-inventory.md). |
| 50 | + - To set up AI agent inventory for agents created in Azure AI Foundry, see [Microsoft Defender for Cloud AI Security posture management](/azure/defender-for-cloud/ai-security-posture). |
| 51 | + |
| 52 | +## The AI agent inventory page |
| 53 | +The AI agent inventory page in Microsoft Defender provides a centralized view of all detected AI agents, along with their key attributes and security status. |
| 54 | + |
| 55 | +1. Sign in to the [Microsoft Defender portal](https://security.microsoft.com/). |
| 56 | +1. In the left navigation pane, select **Assets** > **AI Agents**. |
| 57 | + |
| 58 | + A list of all detected AI agents appears. |
| 59 | + |
| 60 | + :::image type="content" source="media/ai-agent-inventory/ai-agent-inventory.png" alt-text="Screenshot that shows the AI agent inventory in the Defender portal."::: |
| 61 | + |
| 62 | +1. Select **Copilot Studio** or **Azure AI Foundry** to see a filtered list of AI agents based on the tool used to create the agent. |
| 63 | +1. To see detailed information about a specific AI agent, select the agent from the list. |
| 64 | + |
| 65 | +## AI agent details |
| 66 | +When you select an AI agent from the inventory, the **Agent** pane opens, providing detailed information about the selected agent. The information displayed varies based on whether the agent was created in Azure AI Foundry or Copilot Studio. |
| 67 | + |
| 68 | +### [Azure AI Foundry](#tab/azure-ai-foundry) |
| 69 | + |
| 70 | +-- Select **Open agent page** to open the [**AI Agent** page](/azure/defender-for-cloud/identify-ai-workload-model). |
| 71 | + |
| 72 | +:::image type="content" source="media/ai-agent-inventory/foundry-agent-details.png" alt-text="Screenshot that shows the details for Foundry AI agents in the Defender portal."::: |
| 73 | + |
| 74 | +- Select **Go hunt** to perform [advanced hunting](advanced-hunting-overview.md). |
| 75 | +- Select **View on map** to see the agent's [location and related attack paths](/azure/defender-for-cloud/concept-attack-path). |
| 76 | + |
| 77 | +These AI agent details are displayed: |
| 78 | + |
| 79 | +|AI Agent Information |Description | |
| 80 | +|---------|---------| |
| 81 | +|ID |Unique identifier for the agent as assigned to it in Azure AI Foundry | |
| 82 | +|Name |Display name of the agent | |
| 83 | +|Account |The account or tenant under which the AI agent operates, typically linked to organizational ownership. | |
| 84 | +|Deployment |Details about where and how the AI agent is deployed (e.g., cloud environment, on-premises, hybrid). | |
| 85 | +|Attack paths |Potential routes or methods that could be exploited to compromise the AI agent or its environment. | |
| 86 | +|Risk factors |Key vulnerabilities or conditions that increase the likelihood of security threats to the AI agent. | |
| 87 | +|Creation time |Date and time when the agent was created | |
| 88 | +|Project |The associated project or initiative that the AI agent supports or belongs to. | |
| 89 | +|Model |The underlying AI/ML model powering the agent, including version or architecture details. | |
| 90 | +|Recommendations | Suggested actions or best practices to improve security, performance, or compliance for the AI agent. | |
| 91 | + |
| 92 | + |
| 93 | +#### [Copilot Studio](#tab/copilot-studio) |
| 94 | + |
| 95 | +- Select **Open agent page** to open the Copilot Studio AI Agent page in the Defender portal. |
| 96 | +- Select **Go hunt** to perform [advanced hunting](advanced-hunting-overview.md). |
| 97 | + |
| 98 | +:::image type="content" source="media/ai-agent-inventory/copilot-agent-details.png" alt-text="Screenshot that shows the details for Copilot Studio AI agents in the Defender portal."::: |
| 99 | + |
| 100 | +These AI agent details are displayed: |
| 101 | + |
| 102 | +|AI Agent Information |Description | |
| 103 | +|---------|---------| |
| 104 | +|Description |Description of the agent as displayed in the agent's source | |
| 105 | +|ID | Unique identifier for the agent as assigned to it in Microsoft 365 Copilot or Copilot Studio | |
| 106 | +|Environment ID |The identifier of the Microsoft Power Platform environment the agent resides in. | |
| 107 | +|Name |Display name of the agent | |
| 108 | +|Creator | User principal name (UPN) of the account that created the agent | |
| 109 | +|Authentication type | The agent’s configured authentication type for users interacting with the agent; possible values: None, Microsoft, Custom. | |
| 110 | +|Access control |Users that can interact with the agent; possible values: Any, Copilot readers, Group membership, Any (multitenant) | |
| 111 | +|Creation time | Date and time when the agent was created | |
| 112 | +|Owner |User principal names (UPN) of all the owners of the agent | |
| 113 | +|Authentication trigger | Indicates when authentication is triggered for the agent; possible values: As Needed, Always | |
| 114 | +|Authorized security group IDs |List of Azure Active Directory Group IDs that are allowed to interact with the agent | |
| 115 | +|Alerts | Notifies you of any Microsoft Defender alerts related to the AI agent. | |
| 116 | + |
| 117 | + |
| 118 | +--- |
| 119 | + |
| 120 | +## See also |
| 121 | + - [Discover and protect your Copilot StudioAI Agents (Preview)](ai-agent-inventory.md). |
| 122 | + - [Microsoft Defender for Cloud AI Security posture management](/azure/defender-for-cloud/ai-security-posture). |
0 commit comments