Microsoft Copilot (Microsoft 365): Admins will be able to define rules to automate agent lifecycle management.

🚨 The Signal: Admins can now automate Copilot agent lifecycle management, including blocking risky agents, deleting inactive agents, and reassigning ownerless agents. This enhances control over autonomous AI identities, reducing security risks from unmanaged or malicious agents.

The Impact

Security teams and Copilot administrators are affected, reducing the risk of rogue or unmanaged AI agents.

• Security Teams: Reduced risk from unmanaged or malicious AI agents.
• Copilot Admins: Streamlined management of agent lifecycles.
• Compliance Officers: Improved auditability of AI agent activity.
• Organisations: Enhanced security posture for AI deployments.

The Action

1. Review Copilot agent lifecycle management policies.
2. Define rules for auto-blocking risky agents.
3. Configure rules for auto-deleting inactive agents.
4. Set up rules for auto-reassigning ownerless agents.
5. Monitor agent activity logs for policy effectiveness.

Domain: Agentic-AI · Impact: high · Workload: Other · Essential Eight: Restrict Administrative Privileges · ISM: ISM-0445, ISM-1175, ISM-1380, ISM-1507, ISM-1508, ISM-1509, ISM-1647, ISM-1648, ISM-1650, ISM-1686, ISM-1688, ISM-1689, ISM-1883, ISM-1897, ISM-1898