Microsoft has introduced Windows 365 for Agents, a cloud platform designed to provide artificial intelligence agents with secure access to cloud PCs. This initiative allows developers to deploy copilots, agents, and automated workflows within Windows environments without the complexities of managing the underlying infrastructure. The platform features robust security measures, policy controls, scalability, and visibility, enabling agents to browse websites, process data, and accomplish tasks efficiently within a managed cloud PC.
Elaine You, the Agentic AI Product Manager at Microsoft, emphasized the platform’s versatility, stating, “Windows 365 is designed to support a broad spectrum of agent solutions, operating systems, and data access controls, empowering agent makers to innovate freely. This future-ready approach ensures that as agentic computer use needs evolve, Windows 365 will be ready to support them.”
Advanced Infrastructure and Management
Windows 365 for Agents is built on a foundation of enterprise capabilities, utilizing a hosted-on-behalf architecture that operates using single-instance Azure virtual machines. These virtual machines are managed through Microsoft Intune and secured with Microsoft Entra ID. The platform connects through reverse connect transport, ensuring secure and efficient communication.
Microsoft Entra ID plays a crucial role in handling authentication and implementing Conditional Access policies based on factors such as location, risk, and device compliance. The system allows cloud PCs to be either Entra joined or hybrid joined to on-premises Active Directory Domain Services. When an administrator assigns a license and defines a provisioning policy, cloud PCs are automatically provisioned and scaled, streamlining the management process.
Administrators can enroll cloud PCs in Intune for policy configuration, application deployment, and settings management. Connectivity is established through outbound connections to the Microsoft Cloud, eliminating the need for inbound ports. The platform employs technologies like STUN and TURN to ensure reliable access across various network environments.
Optimizing Agent Workloads
The introduction of Windows 365 for Agents allows AI agents to operate within dedicated cloud PC environments. This enables them to execute tasks and interact with enterprise systems and applications while adhering to defined security boundaries. The platform leverages Azure virtual machine infrastructure and integrates Microsoft Intune and Microsoft Entra ID for device management and identity verification.
Microsoft highlights that Windows 365 for Agents goes beyond merely creating a cloud PC platform for AI agent workloads. It introduces capabilities that enhance security, scalability, and cost-efficiency for agent workloads. As outlined in a recent blog post, these enhancements optimize how agents are provisioned, managed, and controlled, all while maintaining enterprise-grade security and compliance.
Agents utilize shared cloud PC pools organized by team or workload rather than being assigned fixed one-to-one arrangements. This flexible model allows for capacity to be pre-provisioned or scheduled based on demand. A check-in and check-out system enables agents to complete tasks using a cloud PC and return it once finished, promoting resource efficiency and usage-based billing.
Windows 365 for Agents also offers programmatic interfaces, allowing developers to create, access, manage, and monitor cloud PCs through Agent 365 tooling. Agents that use these cloud PCs rely on AI vision to interpret screen content, plan actions, and execute tasks effectively. They can adapt to changes in user interfaces while remaining within the same cloud PC environment.
Importantly, the system incorporates human-in-the-loop controls, enabling users to take over during execution to make decisions or enter credentials before returning control to the agent. Each agent operates with a unique Microsoft Entra Agent ID, authenticated with cryptographic credentials, and audit logs clearly distinguish between agent activity and human actions.
The launch of Windows 365 for Agents signifies Microsoft’s commitment to advancing AI capabilities and enhancing operational efficiency for businesses leveraging cloud technologies.
