Agent governance at scale
Hundreds of agents, one source of truth. Every identity verified, every action audited.
The Problem
Enterprise AI deployments are growing from single agents to fleets of specialized agents. Without centralized identity management, you can't answer: how many agents do we have? What can each one do? Who authorized them? What have they done?
The Solution
IDProva Cloud provides a managed registry as the central identity authority for your entire agent fleet. Combine with SSO/RBAC for human operators, compliance reports for auditors, and SIEM integration for your SOC.
Key capabilities
Central Agent Registry
Every agent registered with a W3C DID. Searchable, queryable, always up to date.
Policy Enforcement
8 constraint types: rate limits, IP allowlists, geofencing, delegation depth, time windows, and more.
Compliance Reports
Auto-generate NIST 800-53, ISM, and SOC 2 compliance reports from agent activity data.
SIEM Integration
Stream verification events, scope violations, and anomalies to Splunk, Sentinel, or Chronicle.
# Issue a constrained enterprise DAT
$ idprova dat issue \
--issuer "did:aid:acme.com:admin" \
--subject "did:aid:acme.com:finance-bot" \
--scope "api:service:billing:read" \
--max-depth 0 \
--rate-limit "100/hour" \
--ip-allow "10.0.0.0/8" \
--expires-in "8h" \
--key admin.key
# Cannot re-delegate (depth 0)
# Rate limited to 100 calls/hour
# Only from internal network