Agent 365 Capabilities Summary

Last Updated: February 2026 Version: v1.2.51

Overview

This reference consolidates all Microsoft Agent 365 capabilities documented across the FSI-AgentGov framework. Use this page to quickly locate Agent 365-specific guidance and demonstrate comprehensive coverage to stakeholders and auditors.

Preview Status

Microsoft Agent 365 SDK and Agent Essentials remain in preview through the Microsoft 365 Frontier preview program. Feature availability and documentation may change before general availability.

What is Agent 365?

Agent 365 is Microsoft's governance control plane for AI agents, announced at Ignite 2025. It treats AI agents as first-class identities with dedicated governance capabilities distinct from traditional Microsoft 365 user governance.

Key Components

Component	Description	FSI Framework Coverage
Entra Agent ID	First-class identity for AI agents in Entra ID	Agent Identity Architecture
Agent Blueprints	Governance templates for enterprise agent deployment	Control 1.11
Agent Store	Curated catalog of approved agents	Control 1.2
Agent Registry	Centralized inventory including shadow agent detection	Control 3.1, Control 3.6
Observability SDK	OpenTelemetry-based telemetry for agent monitoring	Agent 365 Observability Playbook
MCP Server Support	Cross-platform agent interoperability	Control 2.17

Framework Coverage Matrix

Identity & Access Management

Agent 365 Capability	FSI Control	Coverage Status
Agentic Users (first-class identity)	1.11, Agent Identity Architecture	Comprehensive
Conditional Access for Agent ID	1.11	Comprehensive
Agent Sponsorship	1.11, Sponsorship Workflows	Comprehensive
Agent Principals in Entra	Agent Identity Architecture	Comprehensive
Blueprint lifecycle phases	Blueprint Promotion Gates	Comprehensive

Data Protection

Agent 365 Capability	FSI Control	Coverage Status
DLP for Copilot Prompts	1.5	Comprehensive
DSPM for AI	1.6	Comprehensive
Sensitivity Label Inheritance	1.5	Comprehensive
Agent 365 DLP Policy Scope	1.5	Comprehensive
Blueprint data governance	1.6	Comprehensive

Inventory & Lifecycle

Agent 365 Capability	FSI Control	Coverage Status
Agent Registry	1.2, 3.1	Comprehensive
Shadow Agent Detection	3.6	Comprehensive
Agent Store Curation	1.2	Comprehensive
Orphaned Agent Remediation	3.6	Comprehensive
Agent Attestation	Sponsorship Workflows	Comprehensive
Agent Retirement	Agent Decommissioning	Comprehensive

Observability & Audit

Agent 365 Capability	FSI Control	Coverage Status
OpenTelemetry Integration	Observability Playbook	Comprehensive
Agent Activity Dashboard	3.8	Comprehensive
AI Usage Events	1.7	Comprehensive
Tool Usage Tracking	Observability Playbook	Comprehensive
Inference Event Logging	1.7	Comprehensive
Purview/Defender Integration	1.7, 3.9	Comprehensive
Blueprint Audit Events	1.7	Comprehensive

Security

Agent 365 Capability	FSI Control	Coverage Status
Defender AI-SPM	1.24	Comprehensive
AI Threat Detection	1.8, 3.9	Comprehensive
Quarantined Agent Collection	1.11	Documented

Interoperability

Agent 365 Capability	FSI Control	Coverage Status
MCP Server Governance	2.17	Comprehensive
Cross-Platform Agent Management	2.17	Comprehensive
Multi-Agent Orchestration	2.17	Comprehensive

Quick Reference: Where to Find Agent 365 Guidance

Framework Documents

Document	Agent 365 Content
Agent Identity Architecture	Complete Agent ID vs Blueprint architecture guide
Zones and Tiers	Zone requirements for Agent 365 deployments
Agent Decommissioning	Agent retirement and sponsorship departure handling

Reference Documents

Document	Agent 365 Content
Agent Essentials Control Mapping	Microsoft's 8-category checklist mapped to FSI controls
Agent Audit Event Taxonomy	Blueprint and Agent ID audit event types
This document	Consolidated capability summary

Playbooks

Playbook	Agent 365 Content
Agent 365 Observability	OpenTelemetry setup, workbooks, alerting
Blueprint Promotion Gates	Lifecycle phase transition governance
Sponsorship Lifecycle Workflows	Entra Lifecycle Workflows for sponsor governance

Controls with Agent 365 Sections

Control	Agent 365 Section
1.2 - Agent Registry	Agent Store Governance, Blueprint Registration
1.5 - DLP	DLP for Copilot Prompts, Agent 365 DLP Configuration
1.6 - DSPM for AI	Blueprint Data Governance
1.7 - Audit Logging	Agent 365 Audit Events
1.11 - Conditional Access	Agent ID Governance, Blueprint Decision Matrix
2.17 - Orchestration Limits	MCP Server Governance
3.1 - Agent Inventory	Unified Agent Visibility Architecture

Regulatory Alignment

Agent 365 capabilities support FSI regulatory requirements:

Regulation	Agent 365 Capability	Benefit
FINRA 4511	Audit logging, Agent Registry	Complete interaction records
FINRA 3110	Observability SDK, Sponsorship	Supervision evidence
SEC 17a-3/4	DSPM, Audit events	Record retention compliance
OCC 2011-12	Blueprint lifecycle, Registry	Model inventory requirements
Fed SR 11-7	Agent ID, Attestation	Model governance accountability
SOX 302/404	Observability, Audit trail	Internal control evidence
GLBA 501(b)	DLP, DSPM, Defender	Customer data protection

Implementation Guidance

Phased Adoption

Phase	Agent 365 Components	FSI Controls to Implement
Phase 1: Foundation	Entra Agent ID, Basic Registry	1.2, 1.11, 3.1
Phase 2: Data Protection	DLP for Prompts, DSPM	1.5, 1.6
Phase 3: Lifecycle	Blueprints, Sponsorship, Attestation	1.11 (expanded), 3.6
Phase 4: Observability	OpenTelemetry, Workbooks, Alerts	Observability Playbook
Phase 5: Advanced	MCP Governance, Multi-Agent	2.17

Zone-Specific Adoption

Component	Zone 1	Zone 2	Zone 3
Agent ID	Optional	Recommended	Required
Blueprints	Not needed	Recommended	Required
Agent Store access	Open	Curated	Restricted
Observability	Basic	Standard	Full
MCP Servers	Not allowed	Approved only	Committee approval

Microsoft Documentation

FSI-AgentGov Resources

Agent Essentials Control Mapping - Complete 8-category mapping
Agent Identity Architecture - Technical architecture guide
Solutions Index - Deployable automation solutions

FSI Agent Governance Framework v1.2.51 - February 2026