Zero-Trust Agents: The Databricks Blueprint for Governing Least-Privilege AI

Most AI agents break when they leave the lab. This session shows you how to build ones that don't — using Databricks as your security-first production backbone.You'll see battle-tested architectural patterns for three real-world scenarios: internal productivity agents with least-privilege access, agents that securely connect to external tools and MCP servers, and governed B2C agents serving non-Databricks users through external web apps.At the core: Unity Catalog as your governance engine. We go deep on passing OAuth identity claims into UC functions for row-level data retrieval, applying identity-based filters within Vector Search, and enforcing tool-level restrictions that travel with your agent across every access pattern.You'll leave with: a reusable architectural blueprint for production agent deployment, concrete techniques for identity-aware data access, and a governance model that scales without becoming a bottleneck.Start shipping agents you can trust with Databricks.