Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
[This article is prerelease documentation and is subject to change.]
Microsoft Copilot Studio integrates with Microsoft Entra Agent ID in preview.
Important
- This is a preview feature.
- Preview features aren’t meant for production use and might have restricted functionality. These features are available before an official release so that customers can get early access and provide feedback.
Agent identities extend identity governance and visibility to agents, helping your organization build, discover, govern, and protect agent identities on a unified platform, across your services.
After you turn on this feature, agents you create in Copilot Studio automatically get an Entra agent identity that you can see and manage in the Microsoft Entra admin center.
You configure how agent identities are used in the Power Platform admin center at the environment level for Copilot Studio agents.
Authentication activity is logged in Microsoft Entra ID and is visible in the Microsoft Entra admin center.
When an agent identity is first created in the environment after enabling the setting, a blueprint is added to your tenant. The blueprint is called Microsoft Copilot Studio agent identity blueprint, and an agent identity blueprint principal is also created.
This principal is necessary as it has privileges to create agent identities and agent users in the tenant.
For more information, see How are agent identities created? in the Microsoft Entra Agent ID documentation.
Prerequisites
- You need to be a Power Platform tenant admin or have the Environment Admin role.
Enable automatic agent identity for Copilot Studio
When you turn on the Entra Agent Identity for Copilot Studio setting in the Power Platform admin center, agents created in Copilot Studio get an Entra agent identity.
You can manage this identity alongside other agent identities in the Microsoft Entra admin center.
To turn on agent identity for Copilot Studio agents:
In the Power Platform admin center, go to the Copilot tab on the side bar, and then select Settings.
In the list that appears, under the Copilot Studio section, select Entra Agent Identity for Copilot Studio.
Select the environment where you want all new Copilot Studio agents to get Entra agent identities, and then select Edit setting.
On the next panel, select On, and then select Save. After saving, close the panel.
To revert this change, repeat the steps but clear the On checkbox, and then Save.
Validate or retrieve agent identity details
You can confirm that agent identities are created for your agents by reviewing metadata details in Copilot Studio:
In Copilot Studio, go to the Settings page for your agent.
Select Advanced.
Expand the Metadata section. The GUID for the agent identity that is associated with the agent appears under Entra Agent ID. Use this GUID in the Microsoft Entra admin center to confirm that agent identities are populated.
Deleting agent identities
When you delete an agent from Copilot Studio, you also remove the associated agent identity from Entra.