Postman AIAgent Mode

Agent Mode Enterprise features

View as Markdown

Agent Mode offers enhanced enterprise-grade features designed to meet the security, governance, and access control requirements of large organizations. These features provide administrators with granular control over AI capabilities while maintaining security and compliance standards.

Enterprise features for Agent Mode include the following:

  • Fine-grained user access control — Control which users and groups can access AI features.
  • Security guardrails — Protect sensitive data with automatic redaction and filtering.
  • MCP governance — Manage and restrict Model Context Protocol server usage.

Fine-grained user access control

Enterprise Admins can control access to Agent Mode beyond the standard team-level AI consent settings, enabling precise control over which users can use AI capabilities within your organization. To manage access to Agent Mode for your organization, see Manage AI access and guardrails.

Granular access control enables common enterprise scenarios:

  • Pilot programs — Start with a small group to evaluate Agent Mode before broader rollout.
  • Role-based access — Restrict access to senior engineers or platform teams.
  • Phased rollouts — Gradually expand access across different teams and departments.

Security guardrails

Agent Mode implements multiple layers of security to protect sensitive data before it reaches any LLM. These guardrails operate automatically to prevent exposure of confidential information.

Secret redaction

Secret redaction automatically prevents API keys, tokens, credentials, and other secrets from being sent to LLMs:

  • Built-in detection — Uses Postman Secret Scanner to identify common secret patterns.
  • Custom rules — Define organization-specific secret patterns for enhanced protection.
  • Client-side enforcement — Prevents secrets from syncing to Postman services or being sent to LLMs.
  • No persistence — Secrets are redacted from LLM calls without being stored.

To manage secret redaction, see Manage AI access and guardrails.

PII redaction

Protect personally identifiable information using industry-standard guardrails. Agent Mode uses AWS’ PII Guardrails to redact PII before forwarding it to the underlying LLM. To manage PII redaction, see Manage AI access and guardrails.

Enabling PII redaction may impact product usability and response latency due to additional processing requirements.

MCP governance

Model Context Protocol (MCP) servers extend Agent Mode functionality by connecting to third-party systems. Enterprise governance controls help manage the security and compliance risks associated with these integrations. To manage the MCP policy for your organization, see Manage AI access and guardrails.