.jpg)
Okta, the leading independent identity partner, has announced a new blueprint for the secure agentic enterprise to help organizations answer three critical questions for the agentic era: where are my agents, what can they connect to, and what can they do? To help customers implement this framework, Okta is delivering Okta for AI Agents, a comprehensive platform to discover and register known and unknown AI agents, standardize agent access, and instantly revoke access to mitigate the impact of rogue agent behavior.
Okta announced a new blueprint for the secure agentic enterprise addressing three critical questions: agent discovery, connection points, and authorized actions.
Okta for AI Agents will be generally available on April 30, 2026, providing capabilities for agent discovery, access management, and governance.
The solution addresses the challenge that while 88% of organizations report suspected AI agent security incidents, only 22% treat agents as independent, identity-bearing entities.
Key capabilities include shadow AI agent discovery, Agent Gateway for centralized access control, and Universal Logout as a "kill switch" for rogue agents.
Okta is extending its Integration Network with dedicated support for AI agent platforms including Boomi, DataRobot, and Google Vertex AI.
The framework responds to the emergence of powerful agents like OpenClaw that can execute terminal commands and autonomously perform complex workflows.
AI agents are evolving faster than any software before them, making traditional security models obsolete. Within the last six months, the stakes for AI security have grown exponentially with more powerful agents emerging that pose significant risks if compromised. Superagents like OpenClaw can now operate directly on users' machines, executing terminal commands, accessing file systems, transferring data between applications, maintaining long-term memory, and autonomously performing complex workflows. The models agents run on have also evolved, capable of spawning teams of ephemeral agents to perform specialized tasks.
Recent research shows while 88% of organizations report suspected or confirmed AI agent security incidents, only 22% of organizations treat AI agents as independent, identity-bearing entities. To secure non-deterministic agents, organizations need a new approach.
"AI agents are evolving faster than any software before them, making traditional security models obsolete. Speed is now a given, but security is the differentiator," said Ric Smith, President of Products & Technology, Okta. "With this new blueprint, Okta is establishing the industry standard for the secure agentic enterprise. We enable companies to discover shadow agents, secure connection points, and maintain the ultimate 'kill switch' to protect their enterprise from evolving risks."
The blueprint for the secure agentic enterprise centers on three fundamental questions that organizations must answer to secure AI agents effectively.
Organizations must identify all known and unknown agents in their environments, including sanctioned platforms managed by IT and unsanctioned "shadow" agents created by employees. Okta's capabilities help organizations onboard agents from major agent platforms, future-proofing investments and insulating them from vendor lock-in. Agent Integrations in the Okta Integration Network (OIN) extend the catalog of 8,200+ integrations to include dedicated support for popular AI agent platforms such as Boomi, DataRobot, and Google Vertex AI. Shadow AI agent discovery automatically detects when employees connect AI agents to enterprise applications, providing full visibility into granted scopes and potential blast radius. Universal Directory expands to treat AI agents as first-class, non-human identities, ensuring every agent has a defined lifecycle from onboarding to decommissioning.
"Securing the agentic enterprise will require industry-wide collaboration," said Carl Siva, Chief Information Security Officer, Boomi. "By combining Boomi's expertise in agentic connectivity and modern integration with Okta's identity leadership, we are delivering a unified security and governance layer that helps organizations harden their security posture while maintaining auditable visibility into every agent's actions."
"If an AI agent has the power to act, it must have an identity. DataRobot has always been built for the enterprise that can't afford to get AI wrong," said Venky Veeraraghavan, Chief Product Officer, DataRobot. "This integration brings together the DataRobot Agent Workforce Platform and Okta for AI Agents, allowing our customers to build an agentic workforce with the rigorous identity standards that Okta is known for, and the confidence to scale from the lab to the front lines."
Enterprises must centrally control every MCP, tool, app, API, and database an agent interacts with. Agent Gateway serves as a centralized control plane to secure AI agent access to resources, with a virtual MCP server capability allowing administrators to aggregate and expose tools from Okta's MCP registry. Privileged Credential Management vaults and automatically rotates agent credentials, preventing exposure in plain text or logs. API Access Management enables AI agents to connect to an authorization server for dynamic least-privilege enforcement based on identity, context, and risk.
True security requires the ability to authorize individual tool calls using context and intent clues. Universal Logout for AI Agents acts as a "kill switch," instantly revoking all access tokens if an agent deviates from its intended mission or accesses sensitive data unexpectedly. Governance for Agents as a Resource brings agents acting on behalf of users into standard certification workflows, enabling automated access reviews, assignment of human owners, and enforcement of least-privilege permissions. System logs capture agent activity including tool calls, authorization decisions, and access attempts for SIEM integration.
About Okta
Okta, Inc. is The World's Identity Company™. We secure AI, machine, and human identity so everyone is free to safely use any technology. Our workforce and customer solutions empower businesses and developers to protect their AI agents, users, employees, and partners while driving security, efficiencies, and innovation.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.