Active Directory, LDAP, and early PAM were created for humans. AI agents and machines were the exception. Today, they outnumber people 82 to 1, and the human-first identity model is being broken at the pace of the machine.
AI agents are the fastest-growing and least governed class of these machine identities – and they don’t just authenticate, they act. ServiceNow alone spends approximately $11.6 billion on security acquisitions in 2025 – a sign that identity, not model, is becoming the control plane for enterprise AI risk.
CyberArk’s 2025 research confirms what security teams and AI builders have long suspected: machine identity now exceeds that of humans by a wide margin. Microsoft Copilot Studio users created more than 1 million AI agents in a single quarter, up 130% from the previous period. Gartner estimates that by 2028, 25% of enterprise breaches will be caused by AI agent misuse.
Why do legacy architectures fail at machine scale?
Builders do not create shadow agents or over-permitted service accounts due to negligence. They do this because cloud IAM is slow, security reviews don’t clearly map agent workflows, and production pressures prioritize speed over precision. Static credentials become the path of least resistance – until they become a breach vector.
Gartner analysts explained the main problem in a report published in May: "Traditional IAM approaches, designed for human users, fail to meet the unique needs of machines such as devices and workloads."
Their research identifies why retrofitting fails: "Retrofitting human IAM approaches to fit machine IAM use cases leads to fragmented and ineffective management of machine identities, violates regulatory mandates and exposes the organization to unnecessary risks."
The difference in governance is clear. CyberArk’s 2025 Identity Security Landscape Survey of 2,600 security decision makers reveals an alarming disconnect: Although machine identities now outnumber humans 82 to 1, 88% of organizations still define human identities only "Privileged user." The result is that machine identities actually have higher rates of sensitive access than humans.
That 42% figure represents automated processes with access to millions of API keys, service accounts, and crown jewels, all governed by policies designed for inside and outside employees.
The difference in visibility further compounds the problem. A Gartner survey of 335 IAM leaders found that IAM teams are responsible for only 44% of an organization’s machine identities, meaning most operate outside of security visibility. IAM strategy without cohesive machine, warns Gartner "Organizations run the risk of compromising the security and integrity of their IT infrastructure."
The Gartner Leaders Guide explains why legacy service accounts pose a systemic risk: They persist even after the workloads they support disappear, leaving orphan credentials with no clear owner or lifecycle.
In many of the enterprise breaches investigated in 2024, the attackers did not compromise the model or endpoint. They reused long-lived API keys associated with abandoned automation workflows – keys that no one realized were still active because the agent that created them no longer existed.
CrowdStrike CTO Elia Zaitsev explained in a recent VentureBeat interview why attackers have moved away from endpoint and toward identity: "Cloud, identity and remote management tools and valid credentials are where the competitor is moving because it is much harder to do unrestricted work on the endpoint. Why try to bypass and deal with a sophisticated platform like CrowdStrike on the endpoint when you can log in as an admin user?"
Why does agentic AI break identity assumptions?
The emergence of AI agents requiring their own credentials has introduced a range of machine identities that legacy systems never anticipated or were designed for. Gartner researchers specifically call out agentic AI as an important use case: "AI agents require credentials to interact with other systems. In some instances, they use delegated human credentials, while in others, they work with their own credentials. These credentials must be implemented carefully to adhere to the principle of least privilege."
The researchers also cite the Model Context Protocol (MCP) as an example of this challenge, the same protocol security researchers have flagged for its lack of built-in authentication. MCP doesn’t just eliminate authentication – it collapses traditional identity boundaries by allowing agents to traverse data and tools without a stable, auditable identity surface.
Administration problems increase when organizations deploy multiple GenAI tools at once. Security teams need visibility into which AI integrations have functional capabilities, including the ability to execute tasks, not just generate text, and whether those capabilities have been implemented appropriately.
Platforms that integrate identity, endpoints, and cloud telemetry are emerging as the only viable way to detect agent abuse in real-time. Broken point tools cannot keep up with machine-speed lateral movement.
Machine-to-machine interactions are already operating at a scale and speed that human governance models were never designed to handle.
Getting ahead of dynamic service identity changes
Gartner’s research points to dynamic service identity as the way forward. They are defined as short-lived, tightly scoped, policy-driven credentials that significantly reduce the attack surface. Because of this, Gartner is advising security leaders that "Move to a dynamic service identity model instead of defaulting to the legacy service account model. Dynamic service identity does not require creating separate accounts, thus reducing management overhead and attack surface."
The ultimate objective is to achieve periodic access and zero permanent privileges. Platforms that integrate identity, endpoint, and cloud telemetry are becoming the only viable way to detect and control agent abuse across the entire identity attack chain.
Security and AI Builders Can Take Practical Steps Today
Organizations taking ownership of agentic identity are treating it as a collaboration problem between security teams and AI builders. Based on Gartner’s Leaders Guide, OpenID Foundation guidance, and vendor best practices, these are the priorities emerging for enterprises deploying AI agents.
- First perform a comprehensive search and audit of each account and credential. It’s a good idea to first create a baseline to see how many accounts and credentials are in use across all machines in IT. CISOs and security leaders told VentureBeat that audits often uncover six to ten times more identities than the security team was aware of prior to the audit. One hotel chain found that it was tracking only one-tenth of its machine identities before an audit.
-
Create and tightly manage agent inventory before production. Being on top of this ensures that AI builders know what they’re deploying and security teams know what they need to track. When there is too much intersection between those functions, it becomes easier for shadow agents to evade governance in the process. A shared registry should track ownership, permissions, data access, and API connections for each agent identity before agents reach the production environment.
-
Pay close attention to and excel at dynamic service identities. Transition from static service accounts to cloud-native options like AWS IAM roles, Azure managed identities, or Kubernetes service accounts. These identities are short-term and need to be strictly enforced, managed and policy-driven. The goal is to excel in compliance while providing AI builders with the credentials they need to build apps.
-
Enforce credentials on static secrets at appropriate times. It is important to integrate just-in-time credential provisioning, automated secret rotation, and least privilege defaults into CI/CD pipelines and agent frameworks. These are all fundamental elements of zero trust that need to be core to developing pipelines. Take the advice of experienced security leaders defending AI builders, who often call VentureBeat to advise not to trust perimeter security with any AI devops workflow or CI/CD processes. Pay big attention to zero trust and identity security when it comes to securing the workflow of AI builders.
-
Establish auditable delegation chains. When agents spawn sub-agents or implement external APIs, authorization chains become harder to track. Make sure humans are accountable for all services, including AI agents. To maintain accountability, enterprises need to track behavioral baselines and drift in real time.
-
Deploy continuous monitoring. Consistently monitor every use of machine credentials with the intentional goal of excellence in observability, keeping the principles of zero trust in mind. This includes auditing as it helps detect unusual activities such as unauthorized privilege escalation and lateral movement.
-
Evaluate posture management. Assess potential exploitation routes, extent of potential damage (blast radius), and any shadow administrator access. This includes removing unnecessary or outdated access and identifying misconfigurations that attackers can take advantage of.
-
Start implementing agent lifecycle management. Each agent requires human supervision, whether as part of a group of agents or in the context of an agent-based workflow. When AI builders move on to new projects, their agents should trigger the same offboarding workflow as departing employees. Orphaned agents with permanent privileges can become breach carriers.
-
Prefer integrated platforms over point solutions. Fragmented devices create fragmented visibility. Platforms that integrate identity, endpoint, and cloud security provide self-service visibility to AI builders while giving security teams cross-domain detection.
The gap is expected to increase in 2026
There is a growing gap between what AI builders deploy and what security teams can control. Unfortunately, each major technology change has also given rise to another generation of security breaches, often forcing its own unique industry-wide reckoning. Just as hybrid cloud misconfigurations, shadow AI and API dispersion continue to challenge security leaders and the AI builders they support, the gap between what can be controlled in terms of machine identity attacks in 2026 and what needs to be improved to stop determined adversaries will widen.
The 82-to-1 ratio is not stable. It is gaining momentum. Organizations that continue to rely on human-first IAM architectures are not simply accepting technical debt; They are building security models that become weaker with every new agent deployed.
Agent AI doesn’t break security because it’s intelligent – it breaks security because it grows identities faster than governance can. For many organizations, turning one of their most obvious security weaknesses into a strength begins with the realization that perimeter-based, legacy identity security is no match for the intensity, speed, and scale of machine-on-machine attacks that are the new normal and will increase in 2026.
<a href
browse caramelbrook collections – The website feels tidy and easy to move through, with enjoyable browsing.
curated fashion corner – This boutique platform offers a sleek layout that makes browsing enjoyable.
recommended vendor page – Opened quickly, pages feel organized and user-friendly.
friendlynetwork – Bright and approachable, browsing feels effortless.
brandworld – Minimal design, information is clear and direct.
smartchargingtips – Clean interface, information is accessible and reliable.
tap here to view – The design is simple, and pages respond quickly.
supplier marketplace portal – Browsed a few sections and the layout feels neat and intuitive.
Discover HollowMarket – Smooth browsing and clean visuals make it easy to navigate.
more info – Effortless interface helped me find interesting and unique items quickly.
learn more here – Modern structure and clear menus make browsing smooth and efficient.
Cloud Portal – Smooth interface, content is easy to read and understand.
birchharbormarket – Came across this page, layout is straightforward and readable.
Crystal Network – Logical arrangement, navigating the site feels natural.
open this link – Navigation is straightforward, content is clear, and pages respond quickly.
explore products here – Pages are well-structured, providing a smooth experience.
go to store – Easy to find information and the interface feels smooth
visit this platform – Overall performance was steady, making it a reliable experience today.
craft goods marketplace – I discovered this and it feels worth a deeper look later.
House of Lemon Lark – Smooth experience with well-laid-out pages.
discover ideas – Clean layout with engaging and easy-to-understand content.
Meadow Boutique – Simple menus and clear organization make browsing enjoyable.
vendor showcase site – Not a bad first impression, I’m curious to see more content later.
CreativeBazaar – Logical flow with neat sections, browsing the site feels natural.
Treasure Lane – Layout feels logical, and finding products is simple.
retail hub site – Clean and orderly setup, makes locating products simple and quick.
VendorHarborStudio – Clear and organized interface, browsing items is natural.
Ivory Corner – Looks professional and easy to navigate.
browse handmade collections – Smooth transitions between pages and very clean design.
coral artisan hub – Looks like a solid platform, eager to see additional content.
ForestMakerStudio – Neat layout, navigating content feels seamless.
visit creative vendor hub – Layout is neat and intuitive, navigation feels natural.
upland willow retail center – Organized pages, browsing is smooth and enjoyable.
discover retail atelier – Pages are well-arranged, making it easy to explore different sections.
shopping portal – Smooth navigation and clear layout create a user-friendly experience.
visit this page – Everything is clear and browsing feels effortless
open merchant link – Layout feels balanced and intuitive for users
Vendor Rose Cove – Layout is uncluttered and browsing feels effortless
start browsing here – Sections are intuitive and easy to navigate.
look through offerings – Sections are easy to scan and finding items is fast.
official store link – Easy-to-follow sections make the overall experience enjoyable.
official link – Navigation is intuitive and the site runs smoothly.
ArtisanMeadowVault – Well-structured layout, browsing items is effortless.
visit page – Simple interface with organized sections makes navigation fast and intuitive.
official prairievendor link – Navigation is intuitive and the design keeps content accessible
StoneMarketOnline – Everything is arranged logically, navigation feels smooth
HandcraftHut – Very readable layout, everything loads nicely and is easy to browse.
see product details – The interface is uncluttered, allowing fast and simple navigation.
go to this store – Layout is clean and information is presented clearly for easy access.
check this link – Navigation feels natural and information is easy to find
see more here – Layout is clean and structured, helping visitors move through the site easily.
CreativeMarble – Well-organized layout, intuitive navigation, and smooth browsing.
HarborCraftsMarket – Simple design, fast-loading pages, and clear sections make browsing enjoyable.
aurorabrook offers – Checked briefly, and it seems easy to navigate and practical.
CoveCraftCorner – Well-laid-out interface, moving through sections is easy.
artisan vendor portal – Organized structure, browsing feels fast and comfortable.
explore site – Well-structured pages and clear information make it simple to use.
Visit the collection – Organized pages and straightforward design make browsing painless.
OliveTradingPost – Clean design and browsing pages feels very natural.
visit this site – Reliable platform with content presented clearly for users.
open this page – Well-arranged content makes exploring the site straightforward and pleasant.
Elm Harbor Maker Collective – Smooth performance, pages load quickly and layout feels intuitive.
Canyon Harbor Art Hub – Smooth design, everything is easy to locate and read.
ivory ridge portal – The site feels intuitive and sections are easy to navigate
Crystal Cove Art Network – Well-laid-out pages, site feels fast and content is easy to locate.
Chestnut Harbor Maker Hub – Simple structure, everything loads fast and works well.
open this page – Smooth performance and an intuitive interface make it easy to explore.
Dawn Ridge Craftworks – Organized layout, pages load quickly and content is easy to navigate.
gildedcovecraftcollective.shop – The site is well-organized, making browsing effortless and clear.
browse website – Clear layout with responsive pages enhances the user experience.
coastharborcraftcollective.shop – Looks neat and functional, everything works fine and feels reliable.
browse platform – The presentation is sharp and information flows logically.
open web link – Pages are arranged neatly for quick and easy access.
browse handcrafted – Layout is clean and moving through sections feels effortless.
view more here – Navigation is straightforward and content is easy to reach.
homepage link – The structure looks very clean as I move through different sections.
check it out – Pages are well-arranged, making it easy to find what I need.
official link – Pages respond quickly, making browsing smooth and efficient.
garnetharbor showcase – Items are clearly displayed, pages load quickly, and navigation is easy.
explore selection – Well-organized interface and responsive design simplify browsing.
shop now link – Navigation is intuitive, and the layout feels uncluttered.
check platform now – Pages load well and the interface is intuitive.
walnutcove creative – Everything loads well and sections are simple to find.
curated crafts – Well-laid-out pages make exploring content effortless.
go here – Creative concepts are showcased well, giving it a distinctive feel.
explore moss harbor – Items are easy to find thanks to a clear and structured interface.
discover artisan gems – Pages are tidy and browsing around feels smooth.
start exploring – Quick load times and logical layout enhance the experience.
browse now – Simple structure makes it easy to find and understand content.
ajax ecommerce helper – Interface is straightforward and moving through items is simple.
check website – Browsed around a little, and the platform appears professional and trustworthy.
check marketplace – Tidy layout and smooth navigation make browsing effortless.
gallery marketplace – The structure is neat and the flow feels comfortable.
Garnet Harbor Goods Center – everything feels organized and navigation is smooth
go to this page – Everything is easy to access without effort.
Browse Rain Harbor Merchant Portal – The experience is smooth, with everything clearly laid out.
Snow Cove Digital Gallery – the layout is neat and navigation feels natural
Crystal Cove Boutique Online – the interface feels modern and well arranged
visit platform – Well-laid-out pages with professional presentation make this site easy to navigate.
Visit Dawn Ridge Market – everything is neatly arranged and runs smoothly without issues
golden harbor shop – Layout is clear and browsing items feels effortless.
start browsing – The interface is simple and the sections are well organized.
Harbor Trail shopping site – The interface is neat and responsive, making browsing smooth and quick.
online purchase helper – Layout and functions are consistent, making it easy to browse.
enter the store – Everything is arranged clearly, helping users make quick comparisons.
see this collection – It feels clean and relaxed, perfect for casual browsing.
see nightfall display – The relaxed design makes everything easy to look through.
handmade hub – Pages are balanced and scrolling around the site is straightforward.
visit this link – Overall, it’s a good experience with neat pages and fast loading performance.
Solar Meadow Trade Market – A vibrant trading space that feels open, bright, and full of energy.
Violet Harbor Storefront View – The layout is clean and navigation works without any friction.
crafted marketplace – Navigation is simple and content is easy to find.
craft marketplace here – Found some excellent wood pieces that seem built to last.
Stone Harbor Online Boutique – everything loads properly and feels very organized
Timber Trail digital shop – reminds me of a small digital cottage market with rustic charm.
browse this craft site – It’s a compact place, but I found a pendant I really liked.
Artisan Trail Honey Hub – I found it simple to move around and everything was easy to access.
discover items – The site is responsive and the layout feels very easy to use.
KHC Gift Commerce Hub – first time here, probably coming back for gifts later.
browse collection – It’s interesting and the structure makes browsing smooth and confusion-free.
hidden vendor shop – The atmosphere feels exclusive, almost like a secret marketplace.
Browse Violet Harbor Outlet – The structure is simple and helps users move around without effort.
visit this page – The site works well and the browsing experience is smooth and reliable.
Royals FC Local Pride – A team identity rooted in regional pride and enthusiastic match attendance
take a look – The gardening inspiration is beautiful and the content is easy to learn from.
Ropica Web Flow – A smooth flowing website designed for effortless browsing and intuitive structure
BL210 Fast Load Hub – A simple online platform optimized for speed and smooth page transitions
utti dolci bakery visuals – A dessert branding platform focused on elegant presentation and sweet aesthetics
Mute Swan Protection Group – A conservation-focused initiative working to preserve swan populations and wetland ecosystems
Dragged Game Hub Online – An online hub delivering energetic and enjoyable gaming content for enthusiasts
Brushwood Cultural Save Project – A preservation project aimed at protecting cultural identity and historic places
Elkhart Development Hub – A structured project focused on community growth through informative updates
Alpine Cove Outpost – Smooth navigation and a simple, clear structure throughout the site.
Intermusses Art Space – A creative online concept showcasing imaginative work and original expression
Mima Mobility Strollers – A family product platform emphasizing comfort, usability, and stylish stroller design
Forest Cove outlet experience site – Everything is cleanly arranged and browsing is comfortable.
Restart Your Story Hub – platform encouraging sharing of recovery journeys and personal breakthroughs
Safe Cinema Kids Platform – A responsible project promoting child-friendly and appropriate movie experiences
Entrepreneur Growth Hub – A space for learning fast business expansion strategies and success principles
shop collection – Simple to navigate and very pleasant to browse slowly.
LFC Wellness Therapy Space – A supportive platform merging football inspiration with mental health and wellbeing care
Slow Fashion Curations – A curated approach to fashion focusing on longevity, sustainability, and thoughtful selection
Dima Digital Profile – A simple online presence site showcasing personal brand information in a clean layout
Pole Training Hub – A studio offering progressive classes to improve flexibility and core strength
click to view – The place gives off a welcoming vibe that feels very comforting and pleasant.
view this site – The concept is positive and gives a warm, uplifting feeling.
click to view – The content is clearly educational and the browsing experience is smooth.
Southwest Coast Bulletin Hub – A bulletin hub providing clear and structured coastal community information
Hotel of Tango Buenos Aires – A themed hotel concept centered on authentic tango culture and guest experience