Silverfort Integrates Runtime Identity Controls into Copilot Studio Agents

Identity-security company Silverfort launched an integration that applies its identity and access controls to AI agents built in Microsoft Copilot Studio, enforcing policy at the moment an agent attempts an action, per a Silverfort press release and reporting by SiliconANGLE. Silverfort says a policy engine sits between an agent's runtime and the target resource, evaluating each access request in real time and returning an allow or deny decision before the action executes, while logging activity tied to the human user. The company says the integration limits privilege elevation, blocks anomalous access attempts before execution, and adapts policies to real-time risk. SiliconANGLE notes the launch follows Silverfort's April 2026 acquisition of Fabrix Security, whose runtime decisioning engine is folded into Silverfort's Runtime Access Protection. Silverfort cites Microsoft figures that more than 80% of the Fortune 500 deploy low-code or no-code agents and 29% of employees use unsanctioned AI agents at work.
What happened
Silverfort launched an integration that applies its identity and access controls to Microsoft Copilot Studio agents, enforcing policy at runtime, per a Silverfort press release and SiliconANGLE. Silverfort says a policy engine sits logically between an agent's execution runtime and the target resource, evaluates each access request in real time, and returns a decision before the action runs. Ron Rasin, Chief Strategy Officer at Silverfort, said in the release: "The more access an AI agent has to corporate resources, the more powerful it becomes. Without deep identity context, there's no way to make an informed, real-time decision about whether an agent's action is legitimate or overreach. That's why agentic security is an identity problem at its core. Silverfort's integration with Microsoft Copilot Studio is a recognition that runtime identity enforcement isn't optional, it's the foundation for deploying AI with confidence."
Technical details
Per Silverfort, the integration ties each agent action back to the human user and multiple machine identities, evaluates contextual risk at the moment of access, returns allow or deny decisions before execution, and logs activity for audit. The company says its controls limit privilege elevation, block anomalous access attempts before they run, and adapt policies to real-time context across human, service, machine, and external agent identities. SiliconANGLE reports the launch follows Silverfort's April 2026 acquisition of Fabrix Security, an AI-native identity company whose runtime decisioning engine is being folded into Silverfort's Runtime Access Protection.
Industry context
Silverfort cites Microsoft figures, reported by SiliconANGLE, that more than 80% of the Fortune 500 are deploying low-code or no-code agents and that 29% of employees use unsanctioned AI agents at work. Editorial analysis: organizations adopting agentic workflows commonly face increased identity complexity and audit requirements, and runtime decisioning with strong identity context is a recurring vendor approach to limiting lateral movement and privilege escalation.
What to watch
Editorial analysis
practitioners and security teams should watch integration maturity with enterprise identity providers, latency and false-positive rates for real-time decisions, audit and logging compatibility with governance frameworks, and how well the controls extend to additional agent runtimes and third-party agents.
Key Points
- 1Silverfort launched a runtime integration for Microsoft Copilot Studio agents that evaluates each access request and returns an allow or deny decision before execution, aiming to prevent unauthorized access and privilege escalation.
- 2The control plane ties agent actions to the human user, logs activity for audit, and adapts to real-time risk across human, service, machine, and external agent identities, per Silverfort.
- 3Enterprises are deploying agents at scale, with Microsoft-cited figures of 80%+ Fortune 500 adoption and 29% unsanctioned use; the launch follows Silverfort's April 2026 Fabrix Security acquisition.
Scoring Rationale
A vendor product integration that brings runtime identity enforcement to Copilot Studio agents is genuinely relevant to security and identity teams given rapid enterprise agent adoption, and it is widely covered across security trade press. As a single-vendor product announcement rather than a platform shift or novel research result, it sits in the solid band.
Sources
Public references used for this report.
Practice interview problems based on real data
1,625 SQL & Python problems across 15 industry datasets — the exact type of data you work with.
Try 250 free problems