Glossary term
Glossary term
Security
A distinct non-human identity for authenticating, authorizing, and auditing agent actions.
Microsoft Entra Workload Identity is used to assign each Copilot Studio agent its own managed identity, enabling Azure AD conditional-access policies and per-agent audit logs in Microsoft Sentinel.
HashiCorp Vault issues short-lived dynamic credentials to each agent instance via AppRole auth - agents authenticate with Vault, receive a time-limited token, and all API calls are attributed to that agent identity.
Salesforce Agentforce assigns each deployed agent a named user in Salesforce with a specific profile and permission set, ensuring all CRM changes are attributed to 'Agent: CustomerService-Prod' in the audit trail.