Okta Wants To Secure Your AI Agents, Too

AI agents are about to get their own corporate ID badges. Identity management giant Okta announced it will start treating artificial intelligence agents as "first-class entities" on its platform, giving them the same security credentials typically reserved for human employees.

The move reflects a growing reality in corporate America: AI agents are proliferating across organizations, often without proper oversight. Many companies discover forgotten agents still connected to long-lived access tokens that hackers could exploit.

"To get AI agent security right, you have to get identity right," CEO Todd McKinnon explained at the company's annual conference. "It's got to be comprehensive. It's got to cover everything — no gaps, no little wedges for any kind of threat to speed through."

Okta's new approach treats AI agents like digital employees, complete with profiles in the company's Universal Directory showing what they can access and who owns them. When security issues arise, IT teams can log agents out of all systems instantly.

The company is also pushing a new industry standard called Cross App Access to standardize how AI agents connect securely across applications, hoping to prevent the security gaps that emerge as businesses deploy hundreds or thousands of automated agents.