Descope introduces Agentic Identity Hub for AI agent integration and security

New capabilities help organizations make their apps and APIs agent-compatible, securely connect Artificial Intelligence (AI) agents to external tools, and secure remote Model Context Protocol (MCP) servers with enterprise-grade authorization.

Descope, the drag & drop external Identity Access Management (IAM) platform, today announced the launch of the Agentic Identity Hub, a platform focused on resolving authentication and authorization challenges for AI agents, systems, and workflows. Key features include enabling applications to become agent-ready while obtaining user consent, allowing scalable connections to over 50 third-party tools and enterprise systems, and assisting developers using the MCP in securing their remote servers with specific authorization APIs and SDKs.

As AI systems become increasingly integrated into workflows, developers encounter the challenge of securely connecting these systems to external Software-as-a-Service (SaaS) tools while ensuring appropriate authentication. With the convergence of standards such as OAuth and MCP, developers must choose between becoming experts in these protocols or facing the risks outlined in the Open Web Application Security Project (OWASP) Top 10 for Generative AI (Genai). This complexity is reflected in the fact that less than two-fifths of Generative AI (GenAI) projects proceed to production.

The Descope no/low code external IAM platform simplifies the creation and management of journeys for consumers, business customers, partners, and APIs/AI agents through visual workflows. Clients such as GoFundMe, Databricks, Navan, and You.com utilize Descope to enhance customer experience, prevent account takeover, and gain comprehensive insights into user and machine identities.

The newly announced capabilities encompass:

Inbound Apps, which allow applications to become their own identity providers via the OAuth standard, enabling AI agents to authenticate securely, access authorized user data, and perform scoped actions with user consent.
Outbound Apps, providing a secure, scalable connection for AI agents to external tools, eliminating the need to manage tokens, scopes, and permissions manually. Developers can utilize over 50 integration templates including those for Gmail, HubSpot, GitHub, Snowflake, Slack, Notion, and Shopify.
MCP Auth SDKs and APIs that aid developers in securing remote MCP servers with authorization controls and enhancing functionality by connecting them with various OAuth-based services.

“As AI systems make our lives easier, we must ensure the lives of developers building AI don’t become harder,” said Slavik Markovich, Co-founder and CEO of Descope. “The Agentic Identity Hub provides a set of tools to help developers focus on building their AI systems while minimizing the time spent on authentication and access control. True enterprise AI adoption won’t happen without a robust, interoperable identity infrastructure working behind the scenes.”

“According to industry trends, over 70% of enterprises cite security, compliance, and trust as primary concerns when adopting AI technologies. As organizations increasingly integrate AI agents into their workflows, the need for robust governance frameworks is critical,” added Paul Nashawaty, Principal Analyst at theCUBE. “To scale AI adoption successfully, enterprises must modernize their identity infrastructure, enabling AI systems to meet enterprise-grade requirements. Solutions like the Descope Agentic Identity Hub are essential to bridging this readiness gap.”

AI agents can autonomously navigate digital storefronts and access SaaS applications; however, there is a need for these applications to adapt to how AI agents function, relying on APIs and standards like OAuth for secure communication. Descope Inbound Apps facilitates this transition, enabling various use cases:

Secure connectivity with AI agents through user consent screens, providing visibility into the data accessible to the AI agent and actions permitted.
Integration with partner applications, allowing them to access user data and perform authorized actions on behalf of the user.
Managing app registration, token handling, and consent for B2C and B2B marketplaces.

“We’re enthusiastic about the potential of Descope Inbound Apps,” said Arnie Katz, Chief Product and Technology Officer at GoFundMe. “Descope is enabling us to offer frictionless, secure authentication experiences to millions of users. Inbound Apps further supports our connection with charity partners, simplifying fundraising across platforms.”

Outbound Apps

Developers building AI systems that engage with external systems face various authentication and integration obstacles that can hinder their progress. Descope Outbound Apps streamlines how AI agents connect to external tools and enterprise systems, providing over 50 templates that cover multiple business applications, which alleviates the complexities of OAuth processes.

“Descope’s Outbound Apps capability allows our developers to focus more on core features rather than integration tasks,” noted Soham Mazumdar, Co-founder and CEO of WisdomAI. “Integrating seamlessly with CRMs and messaging tools enables us to showcase the value of our AI-powered analytics platform quickly.”

Remote MCP Auth SDKs and APIs

The MCP facilitates standardized connections for LLMs with external services. As adoption of MCP increases, developers are tasked with preparing MCP servers for production. The Descope MCP Auth SDKs and APIs simplify implementing MCP authorization in remote Servers, abstracting complexities such as creating OAuth-based flows with PKCE. These solutions enable functionalities like:

Securing MCP servers with OAuth-based authorization for authorized clients.
Extending MCP servers by connecting with external OAuth-based services.

Netskope's Unified Approach to Data Security

Top 3 Updates from the Week - Week of June 2, 2025

Top 3 stories: SASE testing, Scattered Spider tactics, AI security guidance - Week of June 2, 2025