At Build 2026, Microsoft shipped the Agent 365 SDK into general availability, baking identity, policy, and data controls directly into how agents are built — not bolted on after they misbehave in production. A new Agent Registry (Defender + Entra + Intune) surfaces unmanaged local agents and MCP servers orgs didn’t know they were running, while Defender–GitHub Advanced Security is now GA for AI-generated code fixes.
This isn’t Microsoft acting alone — Google’s Gemini platform and AWS’s Bedrock AgentCore are building the same thing: a control plane for agents, much like Kubernetes became for containers. The catch: Microsoft’s strongest pieces (MDASH, Purview runtime DLP) are still preview-only, and the stack works best inside Microsoft’s own boundary — a real trade-off for multi-cloud shops.
Takeaway: budgets are shifting from model access to agent identity and governance.
Happy Learning!!
References
Leave a Reply