Agent Access Governance Monitor¶

Version: v1.1.0 | Status: live | Domain: Access & Identity | Tier: 2

Automated validation of Power Platform environment agent access settings against zone-specific governance requirements.

Mapped Controls¶

Role	Requirement
`power-platform-admin`	Power Platform admin or Dynamics 365 Service Admin for tenant queries, baseline capture, and Dataverse schema setup.
`m365-admin`	Global Admin is the fallback for tenant-level setup when Power Platform admin access is unavailable.

Run Test-AgentAccessCompliance.ps1 and confirm rows are written to fsi_accessvalidationhistory and fsi_accessviolations.