Microsoft Agentic AI Security Tools Unveiled at RSAC

Introduction

Agentic AI is moving quickly from experimentation to enterprise deployment, and that creates a new set of security challenges for IT and security teams. At RSAC 2026, Microsoft outlined an end-to-end strategy for securing AI agents, the infrastructure they rely on, and the data and identities they touch.

What’s new

Agent 365 reaches general availability soon

Microsoft confirmed that Agent 365 will be generally available on May 1. Positioned as a control plane for agents, it is designed to help IT, security, and business teams observe, secure, and govern AI agents at scale.

Key capabilities highlighted include:

• Integration with Microsoft Defender, Entra, and Purview
• Controls to secure agent access
• Protections to reduce data oversharing
• Support for defending against emerging AI threats

Agent 365 is included in Microsoft 365 E7: The Frontier Suite.

New visibility into AI risk across the enterprise

Microsoft is adding several tools to improve AI discovery and risk awareness:

• Security Dashboard for AI is now generally available, providing centralized visibility into AI-related risk.
• Entra Internet Access Shadow AI Detection becomes generally available on March 31, helping identify unmanaged AI app usage at the network layer.
• Enhanced Intune app inventory arrives in May, adding visibility into AI-enabled apps installed on devices.

Entra expands identity protection

Microsoft Entra gains several new and updated capabilities for modern identity security:

• Entra Backup and Recovery for directory resilience is in preview.
• Entra Tenant Governance helps discover shadow Entra tenants and improve multi-tenant governance, also in preview.
• Synced passkeys and passkey profiles are generally available.
• Windows Hello integration for Entra passkeys is in preview.
• External MFA integration is now generally available.
• Adaptive risk remediation is generally available in April.
• A new identity security dashboard and identity risk score in Microsoft Defender are in preview.

Purview adds AI-aware data protection

To address data leakage and oversharing in AI workflows, Microsoft announced:

• Expanded Purview DLP for Microsoft 365 Copilot, generally available March 31
• Purview embedded in Copilot Control System, generally available in April
• Customizable data security reports, available in preview March 31

Why this matters for IT admins

These announcements show Microsoft treating AI as a full security domain rather than a feature add-on. For administrators, the big takeaway is that AI governance, identity, endpoint visibility, and data protection are becoming more tightly integrated across the Microsoft stack.

Organizations already deploying Copilot, AI apps, or autonomous agents should expect increased scrutiny around shadow AI, access policies, and data handling. The new dashboards and controls could help reduce blind spots while supporting safer AI adoption.

Next steps

• Review whether Agent 365 fits your AI governance strategy.
• Enable or evaluate new Entra identity protections, especially passkeys and adaptive remediation.
• Prepare for Shadow AI Detection and updated Intune app inventory to identify unmanaged AI usage.
• Assess Purview DLP policies for Copilot and other AI-related workflows.
• Brief security and compliance teams on Microsoft’s broader agentic AI security model.