Securing AI agents is an emerging challenge for every organization. As AI agents become more autonomous, they’re quickly becoming a core part of business operations. This brings tons of opportunity for organizations looking to move faster and get more work done, but it also raises brand-new security risks for organizations.
This introduction of AI agents — some built internally, others bought from vendors — adds millions of new identities to already complex environments. These agents connect to everything, including sensitive data, endpoints, APIs, and customer information. Traditional security tools weren’t built for AI.
Without strong identity security, AI agents introduce two primary risks:
First, AI agents need to be built securely from the start. They often require broad and persistent privileged access to be effective, which creates vulnerabilities that can lead to unauthorized data access and the exposure of sensitive information.
Second, AI agents need to be managed on an ongoing basis, adhering to standards along the way. This can be difficult due to the complexities of agents connecting between apps across your organization. You need to be able to discover, secure, and manage the connections between them in a way that’s seamless, secure, and standardized.
Ultimately, securing AI agents is an identity security problem. Without a unified approach to managing and protecting these new identities, organizations risk amplifying their attack surface while trying to balance innovation with security.
To help organizations manage and secure this new identity type, we’re focused on three core areas:
- Utilizing the Auth0 platform to help developers build agents that are standards-compliant from the start
- Better securing AI agents as identities within your identity security fabric
- Leveraging standards for AI agents to strengthen security
Learn our approach in this latest edition of Launch Week. For a quick recap of our announcements, be sure to check out our release overview video.
The Okta Platform
Whether you’re securing your workforce, customers, or AI agents, our newest updates help you secure every user, every use case, and every resource.
An identity security fabric
Today’s technology is complex, creating fragmented tools and identity siloes that are difficult to manage and expose businesses to security threats. The attack surface expands with the growth of human and non-human identities, like service accounts and AI agents. Organizations must move beyond thinking of identity as just access management and treat it as a core part of security.
This requires an Identity security fabric — a modern approach to identity architecture. An identity security fabric provides a complete set of tools for governance, privileged access, posture management, and threat protection.
It’s designed for end-to-end protection that works with your existing security tools. It unifies user contexts, ecosystem signals, resources, and policies to orchestrate real-time responses to threats. This allows security teams to detect and respond to breaches faster and automate identity processes for a stronger security posture. The Okta Platform brings this fabric to life.
The Okta Platform brings the identity security fabric to life
Today, we’re unveiling key use cases — our threads — that power this identity security fabric and are designed to address the most critical challenges facing security teams. From protecting on-prem environments to enabling security-driven governance to securing AI agents, these use cases show what’s possible when your identity tools are strong on their own, but even more powerful when working together, helping you spot and stop threats faster.
By weaving the threads into a cohesive fabric, Okta delivers end-to-end, orchestrated identity security before, during, and after authentication for every identity — human, non-human, and AI agents — across all environments. Whether you're a global enterprise or a small business, Okta empowers your Security and IT teams to confidently secure your environments with greater efficiency, visibility, and control, ultimately achieving stronger security outcomes.
Spotlight thread: Okta for Enterprise: Hybrid and On-Premises
Many organizations need to extend the power of the identity security fabric to their on-premises systems. The Okta Platform provides a unified identity solution that seamlessly integrates with and extends identity governance, threat protection, migration, and access capabilities to legacy systems and hybrid environments.
Okta helps to proactively find and fix Active Directory vulnerabilities, provide resilient access even when offline, and automatically respond to threats. This empowers IT and security teams to better secure their entire enterprise and help ensure business continuity.
Spotlight thread: Okta for AI Agents
Okta for AI Agents — Availability: Multiple launches included, see below, Regional Availability: Global
AI agents are here, and Okta helps you bring them into your identity security fabric. We’ve been dealing with non-human identities for years. Whether it’s a rogue service account or an outdated credential, we need ways to find them, lock them down, and govern them.
Okta’s solution provides visibility to discover and identify risky agents, centralized tools to manage and control their access, and automated governance to enforce security policies and manage their lifecycle.
Cross App Access (XAA) (Early Access available January 2026): XAA is a new, open protocol that brings app-to-app and AI agent connections under Okta’s identity control, giving you centralized visibility, policy-driven security, and safer integrations as ISV partners start to build with it.
Phase 1 Use Case Launch (Early Access available January 2026): Identity Security Posture Management, Universal Directory, Identity Access Management, and Okta Privileged Access
Phase 2 Use Case Launch (Generally Available FY27): Access Certifications, Extended Universal Logout
Trusted digital experiences for Okta Customer Identity — Availability: Multiple launches included, see below
Passkeys (Early Access available September 2025): Eliminate passwords for customer and partner logins to help stop phishing and reduce account takeover risk, all while delivering seamless, high-trust experiences.
Okta Identity Governance (Generally Available October 2025): Automate access policies and reviews for external users to help reduce privilege sprawl, support compliance, and streamline operations. We are also announcing Advanced Directory Management as part of the OIG offering that will allow more secure, delegated administration. This enables external collaborators to manage their own users and their access to designated resources, all within a single governance framework.
Identity Threat Protection (Early Access available February 2026): Okta Identity Threat Protection is a unified suite of capabilities that automatically detects and blocks threats before they can compromise users or businesses. It provides the tools to defend against a wide range of attacks, including sophisticated bots, new account fraud, credential stuffing, and suspicious IP addresses, helping to protect your brand and customer trust.
Build your brand’s trust with new products on Okta Customer Identity. We’re announcing powerful new capabilities to help solve your biggest challenges: Passkeys to facilitate eliminating phishing, Okta Identity Governance to automate ongoing governance and help securely delegate B2B users, and Identity Threat Protection to help stop attacks in their tracks.
Enhancements to Okta for Government High and Okta for Government Moderate — Okta Identity Governance: Audit-ready (FedRAMP High, FedRAMP Moderate); Post-audit (Okta for US Military)
Okta’s US public sector portfolio is expanding, with Okta Identity Governance now customer-ready for Okta for Government High (FedRAMP High) and Okta for Government Moderate (FedRAMP Moderate).
This new offering embeds governance directly into the identity lifecycle flow, so all three levels of government can orchestrate everything from onboarding and access policies to threat response in one place. Additionally, OIDC ID Token Encryption is audit-ready for the full US public sector portfolio (Okta for Government Moderate, Okta for Government High, and Okta for US Military). Learn more in our announcement blog.
Okta Privileged Access with Axiom — Availability: Early Access Q1 CY 2026, Regional Availability: Global
Okta recently signed a definitive agreement to acquire Axiom Security, a modern, identity-centric Privileged Access Management (PAM) solution.
Our teams will integrate key Axiom functionality into Okta Privileged Access over the coming months, which will allow us to expand access controls to more sensitive resources, such as databases and Kubernetes, for Okta customers.
Okta Privileged Access is and will continue to be the single control plane for all of our customers’ privileged resources, whether on-premises or in the cloud, streamlining access and governance while eliminating standing privileges.
The Auth0 Platform
The Auth0 Platform helps organizations build a more secure and seamless customer identity experience. It unifies the three core pillars of modern customer identity, facilitating a positive experience without sacrificing security.
Built-in security: For customers, security shouldn’t add friction. Auth0 delivers fast, passwordless logins with built-in defenses like adaptive MFA, bot detection, and standards-based security, monitoring in-session activity while only prompting for a login challenge when a risk is detected.
Tailored journeys: Customers expect tailored experiences. With the Auth0 Platform, you can orchestrate personalized sign-up, login, and profiling journeys using APIs, Forms, and Actions. This allows you to recognize and better secure every interaction, adapting them across new channels or AI agents without rebuilding your stack.
Connected experiences: Identity is the common thread across all channels. Auth0 extends this to every system you use, from apps and POS to connected devices, with pre-built integrations and standards support. This allows you to more securely manage any identity type, including humans and AI agents, for a more consistent experience across all touchpoints.
In this edition of Launch Week, check out all of our releases on the platform in the Auth0 Release Overview PDF.
Auth0 for AI Agents — Availability: Multiple launches included, see below, Regional Availability: Global
Auth0 for AI Agents (Generally Available October 2025): Auth0 for AI Agents is the complete auth solution for building AI agents more securely. With just a few lines of code, developers can move faster while embedding enterprise-grade authentication, token management, async approvals, and fine-grained access controls.
Teams gain the freedom to innovate with persistent memory and human-in-the-loop workflows, while giving executives a high degree of confidence that every in-app action is protected, auditable, and compliant. From pilot to production, Auth0 facilitates the trust, compliance, and speed required to transform AI ideas into enterprise-ready solutions — all backed by the world’s most trusted identity platform.
Cross App Access (Early Access available January 2026): Cross App Access (XAA) is a new, open protocol that extends OAuth for agent-to-app and app-to-app access at scale. Built directly into Auth0, it provides out-of-the-box control and visibility for two key scenarios:
For B2B apps: Give your enterprise customers centralized IT control and visibility into which agents and apps can connect — no custom integrations required.
For internal agents: Use XAA to securely connect your own company’s agents to apps when using a supported IdP like Okta.
In both cases, Cross App Access eliminates long-lived tokens, replaces repetitive user consent flows with policy-driven approvals, and delivers smoother, more secure experiences.
Vertical Sample Apps (Generally Available September 2025): As AI agents become a new type of identity, securing their access presents unique challenges across different industries. This is especially true in regulated sectors like healthcare or finance, and in high-volume sectors such as retail. The industry-specific sample applications help organizations understand how Auth0 can help securely manage and protect human identities today while also preparing them to safeguard emerging AI agent identities.
Auth0 for B2B Enhancements — Availability: Multiple launches included, see below, Regional Availability: Global
Auth0 is introducing a suite of new features to help B2B customers deliver a smoother, faster, and more secure onboarding experience across the full identity lifecycle — from initial setup to more secure offboarding.
Comprehensive self-service capabilities:
Self-Service Provisioning (Early Access available Q3 2025): helps enable your customers to more securely configure inbound SCIM connections to manage identities at their pace.
Self-Service Org Domain Verification for Discovery (Early Access available Q4 2025): helps enable customers to verify and associate domains with specific Auth0 Orgs. Users are automatically directed to the correct login flow across all connected apps, no re-verification required
Self-Service SSO Template (Generally Available Q4 2025): Add additional IdP support (Okta SAML and Auth0 SAML)
My Organizations API (Early Access available Q4 2025): Allows privileged end-users to modify their Orgs and perform common delegated admin tasks (e.g., Org member and access management, security policy configuration)
Market-leading inbound user lifecycle management:
Group Sync with Inbound SCIM (Early Access available Q4 2025): Sync user groups in real-time with out-of-box support for Workforce directory services that implement outbound SCIM.
Directory Provisioning for Google Workspace (Early Access available Q4 2025): Automatically provision and deprovision users from organizations that use Google Workspace as their workforce IdP.
Gain enterprise traction via Okta ecosystem:
Universal Logout (Now Generally Available): Delivers out-of-the-box session termination for Auth0 apps, completing the identity lifecycle with more secure offboarding and compliance — no engineering required.
Express Configuration (Generally Available Q4 2025): Automates setup of Auth0 apps in the OIN, streamlining onboarding facilitating fast, error-free deployment for nearly 17,000 Okta customers.
Live Learning Labs — Exclusive to the Expert Learning Pass, Now Generally Available
We’re bringing Oktane Labs home to you. Live Learning Labs, a new addition to the Expert Learning Pass, empower you to go beyond theory with hands-on practice in a live, guided environment with Okta and Auth0 experts. Lab topics are constantly refreshed and empower you to build practical skills, gain strategic insights, and develop the confidence to excel in real-world identity challenges as a true expert.
Check out Live Learning Labs.
Join Launch Week activities
Best of Oktane: Your Oktane recap in under an hour
Stay ahead in securing AI with the key updates from Oktane, delivered fast. Choose your session and register today:
That’s it for this edition. If you want to dive further into these highlights, all of our innovations across our platforms, and more, head over to our Release Overview webpage.
Disclaimer: Any products, features, functionalities, certifications, authorizations, or attestations referenced in this presentation that are not currently generally available or have not yet been obtained or are not currently maintained may not be delivered or obtained on time or at all. Product roadmaps do not represent a commitment, obligation or promise to deliver any product, feature, functionality, certification or attestation and you should not rely on them to make your purchase decisions.
