#+HashtagPLUS
In

Menu

Silverfort found that Microsoft's new "Agent ID Administrator" role in Entra ID could take over literally any service principal in your tenant — 99% of orgs were exposed. Let's talk about what this means for AI agent identity security.
📰
0

Silverfort found that Microsoft's new "Agent ID Administrator" role in Entra ID could take over literally any service principal in your tenant — 99% of orgs were exposed. Let's talk about what this means for AI agent identity security.

Reddit r/AZURE·u/Expert_Sort7434·about 1 month ago
#5SrJVQmj
#agent#microsoft#entra#principal#silverfort#article
Reading 0:00
15s threshold

Silverfort found that Microsoft's new "Agent ID Administrator" role in Entra ID could take over literally any service principal in your tenant — 99% of orgs were exposed. Let's talk about what this means for AI agent identity security. So Microsoft just quietly patched something that I think deserves more attention in the enterprise security community. Silverfort's researchers (Noa Ariel and Yoav S.) discovered that the **Agent ID Administrator** role in Microsoft Entra ID — introduced specifically to manage AI agent identities — had a scope overreach flaw. Despite being documented as "scoped to agent-related objects only," the role could: • Assign ownership of *any* service principal in the tenant (not just agent-related ones) • Inject credentials onto that principal • Authenticate as that principal → inherit all its permissions If the targeted service principal had Global Admin or privileged Graph API permissions? Full tenant compromise from a role that looks like a low-privilege bot management assignment.…

Continue reading — create a free account

Join HashtagPLUS to read full articles, follow hashtags, vote, and join the conversation.

Create free accountLog in
Read More