MT.1122 - AI agents should not have orphaned ownership
Overview
AI agents should not be orphaned without an active owner.
Agents whose owners have been disabled or deleted in Entra ID lack active governance. No one is responsible for maintaining their configuration, reviewing their security settings, or responding to incidents involving the agent.
How to fix
Assign an active user as the owner of each orphaned agent in Copilot Studio. If the agent is no longer needed, unpublish or delete it.
Learn more: Agent Registry in the Microsoft 365 admin center and share agents with other users
Test Metadata
| Field | Value |
|---|---|
| Test ID | MT.1122 |
| Severity | Medium |
| Suite | Maester |
| Category | AIAgent |
| PowerShell test | Test-MtAIAgentOrphaned |
| Tags | AIAgent, CopilotStudio, MT.1122 |
Source
- Pester test:
tests/Maester/AIAgent/Test-AIAgentSecurity.Tests.ps1 - PowerShell source:
powershell/public/maester/aiagent/Test-MtAIAgentOrphaned.ps1