Governance for AI Agents on Microsoft Azure
Policy enforcement, audit trails, and trust tiers for Copilot, Semantic Kernel, and Azure AI agents. Ship autonomous workloads with confidence.
Purpose-built for the Microsoft ecosystem. Add governance without changing your architecture.
Drop-in governance filter for .NET agents
Add MeshGuard as a Semantic Kernel filter to enforce policies on every tool call. One line of configuration — zero changes to your agent logic.
// Add MeshGuard governance to your Semantic Kernel agent
using MeshGuard.SemanticKernel;
var builder = Kernel.CreateBuilder();
builder.AddAzureOpenAIChatCompletion(
"gpt-4o", endpoint, credentials);
// Drop-in governance filter
builder.Services.AddMeshGuardGovernance(options =>
{
options.GatewayUrl = "https://gateway.meshguard.app";
options.ApiKey = Environment.GetEnvironmentVariable("MESHGUARD_KEY");
options.PolicyName = "azure-production-v1";
});
var kernel = builder.Build();
// Every tool call is now governed, audited, and rate-limitedGovern what Copilot can access per department
Define granular policies for Microsoft 365 Copilot by department, role, or data classification. Ensure Copilot only accesses the data your compliance team has approved.
Agent identity tied to your corporate directory
Authenticate AI agents with Entra ID (Azure AD) credentials. Map agent identities to your corporate directory so every action is traced back to a managed identity.
MeshGuard sits between your Azure AI agents and the resources they access.
Azure AI Agent ──→ MeshGuard Gateway ──→ Your Data & APIs
│ │
▼ ▼
Semantic Kernel Policy Engine
Copilot Plugins + Audit Log
Azure AI Agents + Trust TiersYour Azure AI agent, Copilot plugin, or Semantic Kernel function calls an API through MeshGuard.
MeshGuard checks the agent's identity, trust tier, and permissions against your defined policies.
Approved requests proceed to your APIs. Denied requests are blocked. Everything is audited.
Start free. Scale as your agent fleet grows. Available on the Azure Marketplace.
For individuals exploring agent governance.
For teams shipping their first agents to production.
For organizations scaling autonomous workloads.
For regulated industries and global deployments.
All plans include end-to-end encryption, 99.9% uptime SLA, and SOC 2 Type II compliance. View full pricing details →
Guides, documentation, and resources for governing AI agents on Azure.
Step-by-step guide to adding MeshGuard governance to your Copilot deployment.
SDK reference for the MeshGuard Semantic Kernel filter package.
Connect MeshGuard agent identities to your Azure Active Directory.
Govern Clawdbot agents with MeshGuard policies and audit trails.
Start with the Free plan — no credit card required. Deploy governance in minutes with our Semantic Kernel SDK.
Yes. MeshGuard provides a .NET SDK with a native Semantic Kernel filter integration. The filter intercepts tool calls at the kernel level, evaluates them against your governance policies, and logs every decision to the audit trail. Install via NuGet: dotnet add package MeshGuard.
Yes. MeshGuard integrates with Copilot through Semantic Kernel and the Azure AI Agent Service. Any Copilot agent that uses tool calls or API access can be governed by MeshGuard policies, ensuring compliance and auditability.
MeshGuard can use Azure Entra ID (formerly Azure AD) as an identity provider for agent enrollment. Agents authenticated through Entra ID inherit organizational identity, and MeshGuard maps Entra roles to governance trust tiers automatically.
Yes. MeshGuard is available as a SaaS offering on the Azure Marketplace with integrated billing. Enterprise customers can purchase MeshGuard through their existing Azure commitment, and it counts toward your Microsoft Azure Consumption Commitment (MACC).
Self-hosted deployment is on the MeshGuard roadmap for Enterprise customers. Currently, MeshGuard runs as a managed SaaS service. For organizations with strict data residency requirements, contact us about dedicated deployment options.