Agent Center leverages Microsoft Foundry to provision the AI infrastructure required for automated security operations. Once deployed, you can configure Security Delivery Agents to handle incidents automatically.
What Can You Do Here?
Deploy AI Infrastructure
Provision Microsoft Foundry resources through ContraForce
Create Security Agents
Deploy Security Delivery Agents for automated response
Enable Automation
Configure agents to investigate and respond to incidents
Run Gamebooks
Allow agents to execute response playbooks automatically
Prerequisites
Before deploying Agent Center, ensure you meet the following requirements.User Requirements
| Requirement | Description |
|---|---|
| Subscription Owner | Owner-level access to the Azure subscription where infrastructure will be deployed |
| ContraForce Role | Organizational Admin or Agent Admin role in ContraForce |
| Provisioning | Users do not need to be separately provisioned for ContraForce |
Required Tooling
| Tool | Purpose |
|---|---|
| Microsoft Foundry | Microsoft Foundry platform for AI infrastructure provisioning |
Deploying Agent Center
1
Access ContraForce Portal
Navigate to portal.contraforce.com and sign in with your credentials
2
Navigate to AI Agent Center
From the main dashboard, locate and select the Agent Center option
3
Deploy Microsoft Foundry Infrastructure
Follow the on-screen prompts to configure and provision the Microsoft Foundry infrastructure in your environment
4
Deploy Your First Security Delivery Agent
Once infrastructure provisioning completes, deploy your first Security Delivery Agent (SDA) to begin automated incident handling
Post-Deployment Configuration
After successfully deploying Agent Center, configure your Security Delivery Agents to match your operational requirements.Configuration Options
- Manual Execution
- Automatic Execution
- Gamebook Automation
Run agents on-demand:
- Select individual incidents for investigation
- Choose between investigation-only or investigation with response
- Review agent findings before taking action
Best Practices
Verify Azure permissions before deployment
Verify Azure permissions before deployment
Confirm you have Subscription Owner access before starting the deployment process to avoid interruptions.
Start with manual agent execution
Start with manual agent execution
Begin with Phase 1 (manual execution) to understand how agents analyze your specific incident types before enabling automation.
Review agent outputs regularly
Review agent outputs regularly
Monitor agent investigation results to ensure accuracy and tune configurations as needed.
Document your deployment configuration
Document your deployment configuration
Keep records of your Agent Center settings for troubleshooting and future reference.
Troubleshooting
Common Issues
| Issue | Possible Cause | Solution |
|---|---|---|
| Deployment fails | Insufficient Azure permissions | Verify Subscription Owner access |
| Agent Center not visible | Missing ContraForce role | Confirm Organizational Admin or Agent Admin role assignment |
| Infrastructure provisioning stuck | Azure resource limits | Check Azure subscription quotas and limits |
| SDA deployment fails | Prerequisites incomplete | Ensure Foundry infrastructure deployed successfully first |
If you encounter persistent issues with Agent Center deployment, contact [email protected] with your subscription details and error messages.
Related Guides
Configuring Security Delivery Agents
Set up automated incident investigation and response
Understanding Gamebooks
Learn about automated response playbooks
Incident Management
Overview of incident handling in ContraForce
User Roles and Permissions
Understanding ContraForce role requirements
Questions about Agent Center deployment? Contact us at [email protected].