Govern access to AI agents
Early Access release
Use Okta Identity Governance to expand governance capabilities to AI agents and their linked apps. This ensures that your users have the appropriate access to apps linked with AI agents and nothing more.
A linked app is an app that has an active AI agent associated with it. Streamline requesting access to linked apps using Access Requests and certify and remediate existing access to these apps with Access Certifications.
Access Requests
Access Requests streamlines the process of requesting and approving access to AI agent-linked apps. You can create conditions for the linked apps so that only the users who need access can request access.
Users can request access to an AI-agent-linked app directly from their End-User Dashboard. You can define how the request is routed for approval and any actions, including custom actions through delegated flows, to automatically take as a result of approval or denial. You can also specify the duration of access after which the access is automatically revoked.
Access Certifications
Use resource or User campaigns to review and automatically remediate your users' access to apps (including AI agent-linked apps) based on the reviewer's decision. Campaigns are user access reviews from a certification and compliance perspective. Running campaigns helps you adopt the least privileged access model and ensure that your users have the right level of access to apps.
Use Resource campaigns if you need clear visibility on who has access to AI agent-linked apps.
Access certification is extensible through Okta Workflows.