Edit

Share via

Manage collections in Microsoft Entra Agent Registry

Agent collections provide a way to organize your agent identities. Collections allow administrators to group agents based on various criteria such as function, security requirements, or business context, and then apply consistent policies across those groups. This article explains how to navigate, create, and manage agent collections, including adding agents to both predefined and custom collections.

To get to your agent ID blueprint page, follow these steps:

  1. Sign in to the Microsoft Entra admin center as an Agent Registry Administrator.

  2. Browse to Entra ID > Agent ID > Agent Collections (Preview).

  3. In the Agent collections view, you see a tabbed section containing two options:

    • Select Predefined tab to view agents added to the Global collection.
    • Select Custom tab to view agents added to custom collections. This tab displays any custom collections that you created in your tenant. Selecting a custom collection shows the agents that are part of that collection.

    Screenshot of the Agent collections view showing predefined and custom tabs.

Create a custom collection

To create a custom collection, follow these steps:

  1. In the Agent collections view, select the Custom tab.

  2. Select + Create collection.

  3. Provide a descriptive and meaningful Name and Description of the collection.

    Screenshot of the create custom collection dialog view.

Add an agent to predefined collections

Use the following steps to add an agent to a predefined collection.

  1. Select the Predefined tab to view the predefined collections.

  2. Select the predefined collection you want to add the agent to. It opens a view listing all the agents in that collection and their publisher (builder platform).

  3. To add an agent to the collection, select + Add, then choose the agents you want to add.

    Screenshot of view showing how to add agents to a predefined collection.

Add an agent to custom collections

Use the following steps to add an agent to a custom collection.

  1. Select the Custom tab to view the custom collections.
  2. Select the custom collection you want to add the agent to. A list of all agents and their publisher (builder platform) appears.
  3. To add an agent to the collection, select + Add, then choose the agents you want to add.

Configure Zero Trust Policies for agents

The Microsoft Entra Agent Registry follows Zero Trust principles. For collections, Zero Trust principles are applied by configuring access and discovery policies.

Access policies determine whether an agent can access Microsoft Entra-protected resources, such as other agents, authentication endpoints, or APIs protected by conditional access.

  1. Ensure the agent can obtain a Microsoft Entra access token and complies with all access policy requirements.
  2. Apply conditional access policies for agents to enforce access controls based on the agent's context.
  3. Use identity protection for agents to monitor and respond to risky agent behaviors.

Discovery policies define which agents can be discovered through the registry. You can use system-defined policies provided by Microsoft or create admin-defined policies to suit your organization's needs.

  • Last updated on