Merge pull request #5435 from AbbyMSFT/ai-agents-inventory

AI Agents Inventory

Author: padmagit77

defender-for-cloud-apps/ai-agent-inventory.md

@@ -0,0 +1,77 @@
+---
+title: Discover and detect threats using the AI agents inventory (Preview)
+ms.author: abbyweisberg
+author: AbbyMSFT
+description: Learn how to view all of the AI Agents in your organization using Microsoft Defender.
+ms.date: 11/02/2025
+ms.topic: how-to
+ms.service: defender-for-cloud-apps
+ms.reviewer: gayasalomon
+#customer-intent: As a security administrator, I want view all of the AI Agents in my organization, and detect threats on my AI agents using advanced hunting.
+---
+
+# Discover and protect your AI Agents (Preview)
+
+Microsoft Defender detects all Copilot Studio custom AI agents in your tenant and provides tools to identify misconfigured or potentially risky agents, and collects data from Copilot Studio for use in [advanced hunting](/defender-xdr/advanced-hunting-overview).
+
+## Prerequisites
+To enable AI agent inventory and detection you must opt in to the [Microsoft Defender preview features](https://security.microsoft.com/securitysettings/defender/preview_features) of:
+- Microsoft Defender for Cloud Apps
+- Microsoft Defender for Cloud
+- Microsoft Defender XDR
+
+## Enable the Copilot Studio AI agent inventory
+
+> [!NOTE]
+> The onboarding process for the AI agent inventory requires collaboration with Power Platform administrators.
+
+To enable the Copilot Studio AI agent inventory, follow these steps:
+
+1. **Sign in to the [Microsoft Defender portal](https://security.microsoft.com)** as the System Administrator.
+1. Go to **System > Settings > Cloud Apps > Copilot Studio AI Agents**.
+1. Turn on **Copilot Studio AI Agents**. Enabling Copilot Studio AI Agents confirms that you read the disclaimer and agree to use the Microsoft Defender AI agent protection features. 
+
+    :::image type="content" source="media/protect-ai-agents/copilot-studio-ai-agents-button.png" alt-text="Screenshot of the Copilot Studio AI Agent configuration toggle.":::
+
+1. Work together with the Power Platform administrator to complete these steps in the [Power Platform Portal](https://admin.preview.powerplatform.microsoft.com/security/threatdetection):  
+    1. Select **Microsoft Defender - Copilot Studio AI Agents**.
+    1. Turn on **Enable Microsoft Defender - Copilot Studio AI Agents**.
+
+When Copilot Studio AI Agents are connected, a green indicator appears in the **AI Agents Inventory** section in the Microsoft Defender system settings. It can take up to 30 minutes for the initial connection status to update. Depending on the size and complexity of your environment, it might take longer to see the full deployment of the AI agent inventory.
+
+
+## Identify misconfigured or risky AI agents using advanced hunting
+
+After you give Microsoft Defender access to your custom agents, you can use advanced hunting to help identify misconfigured or risky agents and minimize organizational exposure to potential threats.
+We recommend that you reach out to the owners of the risky agents for more information, and that you consider quarantining or deleting risky agents.
+
+1. Sign in to the Defender portal, and go **Investigation & response** -> **Hunting** -> **Advanced hunting**.
+1. In the **Apps & identities** section, the [AIAgentsInfo table](/defender-xdr/advanced-hunting-aiagentsinfo-table) contains data for all your custom AI agents created using Copilot Studio. You can use this data to create custom queries.
+
+### Sample queries
+
+Run this query to get a list of all the agents in your tenant:
+
+```kusto
+    AIAgentsInfo 
+    | summarize arg_max(Timestamp, *) by AIAgentId
+```
+
+Run this query to identify all published agents that are configured with an incorrect authentication mechanism: 
+
+```kusto
+    AIAgentsInfo
+    | summarize arg_max(Timestamp, *) by AIAgentId 
+    | where AgentStatus != "Deleted"  
+    | where AgentStatus == "Published" 
+    | where UserAuthenticationType == "None" or AuthenticationTrigger == "As Needed"  
+    | project-reorder AgentCreationTime ,AIAgentId, AIAgentName, AgentStatus, CreatorAccountUpn, OwnerAccountUpns
+```
+
+ 
+See [Proactively hunt for threats with advanced hunting in Microsoft Defender](/defender-xdr/advanced-hunting-overview) to learn how to use queries to proactively hunt for threats.
+
+ ## Related articles
+ 
+ - [Protect your Copilot Studio custom AI Agents (Preview)](ai-agent-protection.md)
+ - [Enable real-time protection for Microsoft Copilot Studio Agents](real-time-agent-protection-during-runtime.md)  

defender-for-cloud-apps/ai-agent-protection.md

@@ -0,0 +1,31 @@
+---
+title: Protect your Microsoft Copilot Studio AI agents (Preview)
+description: Learn how to enable and manage AI Agent protection for Microsoft Copilot Studio AI agents using Microsoft Defender.
+ms.date: 11/02/2025
+ms.topic: how-to
+ms.service: defender-for-cloud-apps
+ms.reviewer: gayasalomon
+#customer-intent: As a security administrator, I want my Copilot Studio AI agents to be protected against suspicious or harmful actions so that I can reduce security risks to my organization.
+---
+
+# Protect your Microsoft Copilot Studio AI agents (Preview)
+
+As No code/Low code platforms become increasingly accessible, organizations face new types of security risks. These platforms empower non-technical users to build and deploy custom agents without centralized security review or controls in place. Attackers can attempt to manipulate these agents by:
+- Injecting malicious prompts
+- Triggering unintended tool executions
+- Exploiting data sources to escalate privileges or exfiltrate data.
+
+## AI agent protection features
+
+Microsoft Defender addresses critical security gaps with comprehensive AI agent protection that includes proactive exposure, threat hunting, real time protection, and alerts. With AI agent protection, Microsoft Defender:
+
+- Detects all of your custom AI agents created with Microsoft Copilot Studio, and integrates their data into advanced hunting for proactive threat detection. You can use this data to create custom queries and hunt for potential threats. See [Copilot Studio AI agent inventory (Preview)](ai-agent-inventory.md) to learn how to set up and make use of the AI agent inventory.
+- Collects audit logs for your custom AI agents created with Copilot Studio, continuously monitors the agents for suspicious activity, and enables detections and alerts. To enable this monitoring, make sure that you:
+    - [Enable the AI agent inventory](ai-agent-inventory.md#enable-the-copilot-studio-ai-agent-inventory).
+    - [Enable the Microsoft 365 app connector](protect-office-365.md#connect-microsoft-365-to-microsoft-defender-for-cloud-apps).
+- Provides real-time protection to block suspicious or harmful actions initiated by your AI agents, and triggers an informative alert integrated into the XDR incidents and alerts environment. See [Enable real-time protection for Microsoft Copilot Studio Agents](real-time-agent-protection-during-runtime.md) to learn how to set up real-time protection.
+
+## Related articles
+
+- [Discover and protect your Copilot Studio custom AI Agents (Preview)](ai-agent-inventory.md)
+- [Enable real-time protection for Microsoft Copilot Studio Agents](real-time-agent-protection-during-runtime.md)    

defender-for-cloud-apps/media/protect-agents-real-time/turn-on-real-time-agent-protection.png

@@ -1,22 +1,16 @@
 ---
-title: Real-time protection during agent runtime for Microsoft Copilot Studio AI agents (Preview)
-description: Learn how to enable and manage real-time runtime protection for Microsoft Copilot Studio AI agents using Microsoft Defender.
-ms.date: 10/26/2025
+title: Protect your agents in real-time during runtime (Preview)
+description: Learn how to Protect your environment in real-time during agent runtime using Microsoft Defender for Cloud Apps.
+ms.date: 11/02/2025
 ms.topic: how-to
 ms.service: defender-for-cloud-apps
 ms.reviewer: gayasalomon
-#customer-intent: As a security administrator, I want my Copilot Studio AI agents to be protected against suspicious or harmful actions during runtime so that I can reduce security risks to my organization.
+#customer-intent: As a security administrator, I want my Copilot Studio AI agents to be protected against suspicious or harmful actions so that I can reduce security risks to my organization.
 ---
 
-# Real-time protection during agent runtime for Microsoft Copilot Studio AI agents (Preview)
-
-
-## Overview
-
+# Protect your environment in real-time during agent runtime
 As AI agents become increasingly accessible through low-code/no‑code (LCNC) platforms like Microsoft Copilot Studio, organizations face new types of security risks at scale. These platforms empower non‑technical users to build and deploy custom agents without centralized security review or controls in place. Attackers can attempt to manipulate these agents by injecting malicious prompts, triggering unintended tool executions, or exploiting data sources to escalate privileges or exfiltrate data.
 
-## Capabilities
-
 Real-time protection during agent runtime in Microsoft Defender reduces these risks by inspecting tool invocations before the agent runs any actions.
 
 If Microsoft Defender determines that a prompt is suspicious:
@@ -25,54 +19,29 @@ If Microsoft Defender determines that a prompt is suspicious:
 - The user gets notified that their message was blocked.
 - An informative alert is created and appears in the Microsoft Defender portal under XDR Incidents and Alerts.
 
-
-This capability adds another security layer on top of Microsoft Copilot Studio, helping ensure AI agents remain resilient against evolving threats.
+## Enable real-time protection for Microsoft Copilot Studio agents during runtime
 
 > [!NOTE]
-> Real-time protection during agent runtime currently supports only AI agents created with Microsoft Copilot Studio custom agents.
-
-
-## Prerequisites
-
-Before enabling real-time agent protection during runtime, make sure:
-
-- You have a valid Microsoft Defender for Cloud Apps license.
+> - The onboarding process for real-time protection during agent runtime requires configuration in Power Platform and collaboration with other administrators.
+> - If the Microsoft 365 connector isn’t properly connected, real-time agent protection during runtime continues to block suspicious activity on the AI agent, but alerts and incidents related to these actions won't appear in the Microsoft Defender portal.
 
-- You have Security Administrator privileges in the Microsoft Defender portal.
-
-
-> [!NOTE]
-> The onboarding process for real-time protection during agent runtime involves configuration in Power Platform and collaboration with other administrators.
-> 
-> [!IMPORTANT]
-> This feature is currently in preview and included with your Microsoft Defender for Cloud Apps license at no extra cost. Licensing requirements might change when the feature becomes generally available. If that happens, the feature will be disabled, and you'll be notified should you wish to re-enable it under the new license.
-
-## Turn on real-time protection during agent runtime
-
-The following steps describe the Security Administrator’s required actions to enable real-time protection during agent runtime.
-
-1. **Sign in to the [Microsoft Defender portal](https://security.microsoft.com)**:
+1. Sign in to the **[Microsoft Defender portal](https://security.microsoft.com)**:
 1. Navigate to **System > Settings > Cloud Apps > Copilot Studio AI Agents**.
 1. Check the Microsoft 365 App Connector status:
    - **If the connector is already connected:** Continue to step 5.
    - **If the connector isn’t connected:**
       - Under **Microsoft 365 connector**, select **Connect** or **Edit**.
       - Select **Microsoft Entra ID Management events** and **Microsoft 365 activities**. 
       - Select **Connect Microsoft 365**.
+1. Work together with a Power Platform administrator to and Enter the App ID provided by your Power Platform administrator and select **Save**.
+      
+    :::image type="content" source="media/protect-ai-agents/turn-on-real-time-agent-protection.png" alt-text="Screenshot that shows how to turn on Real time agent protection during runtime in the Defender portal." lightbox="media/protect-ai-agents/turn-on-real-time-agent-protection.png":::
 
-    > [!IMPORTANT]
-    > If the Microsoft 365 connector isn’t properly connected, real-time agent protection during runtime continues to block suspicious activity on the AI agent. Alerts and incidents related to these actions won't show in the Microsoft Defender portal.
-
-1. Enter the App ID provided by your Power Platform administrator and select **Save**.
-      :::image type="content" source="media/protect-agents-real-time/turn-on-real-time-agent-protection.png" alt-text="Screenshot that shows how to turn on Real time agent protection during runtime in the Defender portal." lightbox="media/protect-agents-real-time/turn-on-real-time-agent-protection.png":::
-
-    > [!IMPORTANT]
-    > - Completing the onboarding process requires collaboration with a Power Platform administrator. The onboarding instructions on the Power Platform side are specified here: [Enable external threat detection and protection for Copilot Studio custom agents](/microsoft-copilot-studio/external-security-provider#step-2-configure-the-threat-detection-system).
-    > - The application ID that the Power Platform administrator needs to provide is this [Microsoft Entra ID application](/microsoft-copilot-studio/external-security-provider#step-1-configure-microsoft-entra-application).
-    > - To allow the Power Platform administrator to complete the onboarding steps, share the URL provided in the Defender portal with them.
-    
-1. No further action is needed on your part. Once the Power Platform administrator completes the onboarding steps on their side, you’ll see a green **Connected** status.
+1. Work together with a Power Platform administrator to complete these onboarding steps: [Enable external threat detection and protection for Copilot Studio custom agents](/microsoft-copilot-studio/external-security-provider#step-2-configure-the-threat-detection-system).
+    - The Power Platform administrator must use the same App ID as the App ID used in [Microsoft Entra ID application](/microsoft-copilot-studio/external-security-provider#step-1-configure-microsoft-entra-application).
+    - Share the URL provided in the Defender portal with the Power Platform administrator to help them complete the onboarding steps.
 
+    Once the Power Platform administrator completes the onboarding steps, a green **Connected** status appears in the **Microsoft 365 connector** section.
 
 ## Related articles
 

defender-for-cloud-apps/media/protect-ai-agents/ai-agent-configuration.png

@@ -428,9 +428,13 @@ items:
       href: app-activity-threat-hunting.md
   - name: App governance FAQ
     href: app-governance-faq.yml
-- name: AI agents
+- name: Protect AI agents
   items:
-  - name: Protect Copilot Studio agents in real time
+  - name: Overview
+    href: ai-agent-protection.md
+  - name: Enable the AI agent inventory
+    href: ai-agent-inventory.md
+  - name: Enable real-time protection for AI agents
     href: real-time-agent-protection-during-runtime.md
 - name: View and manage applications
   items:

defender-for-cloud-apps/media/protect-ai-agents/ai-agent-inventory.png

@@ -223,6 +223,8 @@
             href: advanced-hunting-aadsignineventsbeta-table.md
           - name: AADSpnSignInEventsBeta
             href: advanced-hunting-aadspnsignineventsbeta-table.md
+          - name: AIAgentsInfo
+            href: advanced-hunting-aiagentsinfo-table.md
           - name: AlertEvidence
             href: advanced-hunting-alertevidence-table.md
           - name: AlertInfo