SailPoint Straps Security to AI Agents with Agentic Fabric

To help support the enterprise deployment of AI, SailPoint has introduced Agentic Fabric, a platform that aims to provide enterprises with visibility and control over AI agents and other non-human identities that access systems and data.

The launch responds to organisations deploying AI at scale across cloud environments without clear oversight of what these autonomous agents can access or who is responsible for them.

For security teams, the challenge is immediate. AI agents now operate across infrastructure at machine speed, often without a defined owner. This creates attack surface exposure that traditional identity and access management tools were not designed to address.

The non-human identity problem

Identity security systems were built to manage human users. AI agents behave differently, acting autonomously across multiple systems simultaneously and lacking clear ownership within organisational hierarchies.

According to SailPoint, this creates a governance gap that most organisations cannot currently close. "AI agents are transforming how work gets done, but they're also introducing a new class of identity risk that most organisations aren't prepared for," says Matt Mills, President at SailPoint.

"You cannot secure what you cannot see, or what you cannot tie back to accountability. Agentic Fabric gives organisations the visibility, control and context to keep autonomous agents secure, accountable and connected to a human owner," Matt says.

The platform operates alongside SailPoint's Identity Security Cloud, which handles human identities.

Together, the two products are intended to manage every identity type across an enterprise from a single control plane.

Core security functions

The solution is structured around three functions. The first is discovery, where Agentic Fabric maps all AI agents, machine identities and applications across cloud environments and endpoints.

This builds what SailPoint calls an identity graph, linking agents to the data and systems they interact with. For security teams, this could mean visibility into shadow AI deployments that bypass centralised IT approval.

The second function is governance. Each agent is assigned to a human owner with lifecycle controls and access policies applied accordingly. This is relevant for threat modelling, as it establishes accountability for what an agent can do and who authorised it.

The third function is protection, which includes real-time authorisation controls, threat detection and automated response.

Least privilege and threat detection

The protection layer enforces least-privilege access, restricting agents to only what they need when they need it. This could reduce the blast radius if an agent is compromised or begins behaving unexpectedly.

"With Agentic Fabric, SailPoint is moving aggressively to secure one of the biggest emerging risks in enterprise AI: the rapid growth of AI agents and other non-human identities," says Chandra Gnanasambandam, EVP of Product and CTO at SailPoint.

"As this new identity landscape takes shape, organisations need a way to govern and protect human, machine and AI identities together. Agentic Fabric is a major step forward in helping customers secure the AI era."

The platform is designed to integrate with existing security architectures rather than replace them. SailPoint positions it as an extension of identity-centric security models into the non-human domain.

Packaging and commercial rollout

Alongside this launch, SailPoint is also launching two commercial packages. Agentic Business provides foundational governance with least-privilege access across all identity types.

Agentic Business Plus adds zero-standing privilege with just-in-time access and stronger enforcement controls. This tier is aimed at organisations with more complex or higher-risk environments.

Organisations also get access to a free Discovery Tool trial, available immediately to map shadow AI and unregistered applications running across their infrastructure. The trial is open to new customers as a standalone product and to existing users of IdentityIQ and Identity Security Cloud.

Agentic Fabric and the full agentic packages are due to be generally available this summer.