Discover and assess AI agents

Use the Okta Identity Security Posture Management (ISPM) console to find AI agents that you don't know about in your unmanaged and managed apps. You can also assess the agent ownership, its permissions, and the resources it can impact.

Users often grant OAuth 2.0 tokens and permissions to AI agents so they can act on their behalf in managed and unmanaged apps. IT and security teams may find it challenging to discover these AI agents, the level of access they were given, the actions they can take, and the risk they pose to the org's security posture.

Find AI agents in unmanaged apps

1. Configure the Secure Access Monitor plugin

2. Discover shadow AI agents using the SAM plugin

3. Assess AI agents that have privileged OAuth scopes

Find AI agents in managed apps

1. Integrate Salesforce with ISPM and grant the required permissions. Currently, ISPM can discover AI agents that were built using Salesforce Agentforce.

2. Discover AI agents in managed apps