Raising the Bar for SaaS Agent Protection with Microsoft

Enterprises are racing to harness the power of agents in Microsoft Copilot Studio in a bid to unlock new levels of productivity. But every leap forward brings risk. These agents need to be controlled to prevent data leaks or malicious use at runtime, monitored for excessive permissions and kept compliant with security policies.

Palo Alto Networks is proud to announce our collaboration with Microsoft Copilot Studio. Prisma^Ⓡ AIRS is now integrating with Copilot Studio through the new Security Webhooks API, giving customers real-time runtime protection on top of industry-leading posture security. With this capability, organizations have added assurance knowing that a SaaS agent security service is adding additional safeguards end-to-end.

Posture + Runtime: Comprehensive Protection

Agents introduce new challenges, like a lack of visibility, overly complex permissions and the constant threat of runtime abuse. Prisma AIRS tackles these issues by protecting the entire lifecycle of your agents.

For posture management, it maps and monitors agent permissions to enforce least-privileged access, blocks indirect employee access to sensitive apps, and validates configurations. It also scans models for tampering or injected threats, uncovers sensitive data exposure and misconfigurations, and even stress-tests deployments with automated red-teaming to simulate a real-world attack.

Once an agent is live, runtime integration and continuous logging allow Prisma AIRS to monitor every action in motion. It detects and blocks unsafe behaviors, such as attempts to send sensitive data to unauthorized recipients or external LLMs. It also actively defends against threats like prompt injection, malicious code and data leaks. Because SaaS agents have unique risks, Prisma AIRS specifically stops identity impersonation, memory manipulation and tool misuse.

By bringing all these defenses together, Prisma AIRS gives you the freedom to innovate with AI agents while staying compliant and secure.

How it Works: Security Webhooks for SaaS Agents

Microsoft Copilot Studio’s Security Webhook API lets trusted partners evaluate and control agent activity at runtime. Prisma AIRS connects through the POST /analyze-tool-execution endpoint, which passes detailed context on the agent’s planned tool execution, user prompts, chat history and metadata about the conversation.

Here’s where Prisma AIRS comes in. It blocks unsafe or noncompliant actions — like an email being sent to the wrong recipient. It applies advanced risk checks in runtime. It monitors and audits every execution for full traceability, all without slowing down business productivity.

Getting started is straightforward. Customers register a new app in Microsoft Entra, configure Federated Identity Credentials (FIC) for secretless authentication, and authorize the app with Prisma AIRS. In just a few steps, runtime protection runs inside Copilot Studio agents.

Microsoft is committed to helping organizations innovate with AI in a secure and trusted way. By collaborating with Palo Alto Networks, we’re strengthening agent security in Microsoft Copilot Studio, delivering real-time protection and visibility so customers can confidently bring AI into their business.

— Shay Gurman, Vice President, Microsoft Copilot Studio

Availability and Next Steps

Microsoft is integrating with Prisma AIRS as part of its launch of Security Webhooks in Copilot Studio. Prisma AIRS runtime integration is available through this collaboration today. For more information, fill out our contact form and one of our representatives will be in touch.

Stay tuned for more updates and make Prisma AIRS the foundation of your SaaS agent security.