Hybrid Identity Protection

Practice Checkpoint 2: Setting Agent Identity Permissions

Practice Checkpoint 2: Setting Agent Identity Permissions

  • Semion Vasilevitzky and Jonathan Elkabas
  • Jul 10, 2026

In this Practice Checkpoint—part of our comprehensive Guide to Preventing Entra ID Identity Attacks—you'll walk through the steps to wire up the permission model for an agent identity in the same way it appears in real deployments.

Agent Identities: Design Deep Dive

Agent Identities: Design Deep Dive

  • Semion Vasilevitzky and Jonathan Elkabas
  • Jul 10, 2026

In the previous chapter of this comprehensive guide to preventing Entra ID agent identity attacks, we defined the core objects that make up the Agent ID model. With that overarching model in mind, we’re ready to develop a deeper understanding of how identities inherit properties in the Agent ID platform.

Practice Checkpoint 1: Building Agent ID with MS Graph

Practice Checkpoint 1: Building Agent ID with MS Graph

  • Semion Vasilevitzky and Jonathan Elkabas
  • Jun 30, 2026

The fastest way to truly understand Microsoft Agent ID is to build an agent identity yourself, from scratch. Walk through this guided tour to build a real Agent ID object set in your Entra ID tenant.

Agent ID: Understanding Microsoft’s Agent Identity Platform

Agent ID: Understanding Microsoft’s Agent Identity Platform

  • Semion Vasilevitzky and Jonathan Elkabas
  • Jun 30, 2026

Microsoft’s Entra Agent ID and the agent identity platform are about to become a major theme in identity and security conversations. Learn how this platform enables you to discover, manage, monitor, and secure AI agent identities.

The Taxonomy of Workload Identities in Entra ID: Service Principals, Enterprise Applications, and Other Forms of Organized Confusion

The Taxonomy of Workload Identities in Entra ID: Service Principals, Enterprise Applications, and Other Forms of Organized Confusion

  • Semion Vasilevitzky and Jonathan Elkabas
  • Jun 26, 2026

The term workload identity describes multiple types of non-human identities in Entra ID. In this chapter of our guide to preventing agent identity attacks, dive into the distinctions between workload identity types and discover the newest type: ServiceIdentity.

Meet Entra ID Agent Identities (BTW: They’re Not People)

Meet Entra ID Agent Identities (BTW: They’re Not People)

  • Semion Vasilevitzky and Jonathan Elkabas
  • Jun 26, 2026

Non-human identities already far outnumber human identities. Learn how the Entra ID agent identities defined by Microsoft fit into the Authentication, Authorization, and Accounting model that governs our digital landscape.

Understanding and Preventing Entra ID Agent Identity Attacks: A Comprehensive Guide

Understanding and Preventing Entra ID Agent Identity Attacks: A Comprehensive Guide

  • Semion Vasilevitzky and Jonathan Elkabas
  • Jun 26, 2026

Developed by the Semperis research team, this multi-part guide helps organizations understand how Microsoft approaches human and non-human identities in Entra ID—and how to protect these critical assets from threat actors.

Bringing Identity Context Into the Microsoft Security Workflow: Semperis’ Integration with Sentinel and Copilot

Bringing Identity Context Into the Microsoft Security Workflow: Semperis’ Integration with Sentinel and Copilot

  • Ran Harel
  • Jun 23, 2026

We now have a working, field-ready integration that brings Semperis Lightning Intelligence into the Microsoft security ecosystem. This is not just another screen for defenders to look at. It’s a way to make identity risk actionable inside the workflows security teams already use every day.