TL;DR: Matrix42 describes KI agents that resolve routine IT requests inside existing service workflows, using approved actions to cut ticket volume and speed resolution, according to Matrix42. The governance issue is that ITSM design assumes requests will remain reviewable long enough for a human support path to intervene, but self-resolution compresses that window.
NHIMG editorial — based on content published by Efecte: KI-Agenten für Self-Resolution: Mehr Wertschöpfung durch KI
By the numbers:
- NHIs outnumber human identities by 25x to 50x in modern enterprises.
Questions worth separating out
Q: How should security teams govern self-resolution agents in IT service management?
A: Treat self-resolution as delegated identity activity, not only automation.
Q: Why do automated service workflows change IAM and ITSM risk?
A: They move the control point from human ticket handling to machine execution.
Q: What breaks when context data is incomplete in self-resolution flows?
A: The workflow may act on stale or partial identity and device information, which can lead to incorrect resets, unnecessary access approval, or failed escalation.
Practitioner guidance
- Define the approved action set first Document every password reset, access grant, device sync, and application action the agent is allowed to execute, then tie each one to a named policy owner and approval boundary.
- Validate identity and ticket context sources Check that user, device, request, and incident data all come from authoritative systems before the agent can use them to decide whether to act.
- Separate request handling from entitlement change Keep routing, recommendation, and execution as distinct steps so that access changes and endpoint actions cannot happen just because a request was interpreted correctly.
What's in the full article
Matrix42's full article covers the operational detail this post intentionally leaves for the source:
- Examples of the service actions the KI agent can execute across support and self-service channels
- How the workflow uses existing permissions, connectors, and approvals inside the platform
- The vendor's description of context signals such as assigned devices, tickets, and pending approvals
- The intended service outcomes for ticket volume, resolution speed, and IT workload balance
👉 Read Efecte's analysis of KI agents for self-resolution in ITSM →
KI agent self-resolution in ITSM: are your controls keeping up?
Explore further
Self-resolution agents expose a governance assumption that support queues are the control point. That assumption was designed for human-paced service desks, where every request can be paused, reviewed, and redirected. It fails when approved actions are executed directly inside the workflow because the decision and the action collapse into one step. The implication is that control ownership moves upstream into policy, entitlement design, and exception handling rather than the ticket queue.
A few things that frame the scale:
- NHIs outnumber human identities by 25x to 50x in modern enterprises, according to the Ultimate Guide to NHIs.
- Only 20% have formal processes for offboarding and revoking API keys, and even fewer have procedures for rotating them.
A question worth separating out:
Q: Who should own automated access and reset decisions in ITSM?
A: Ownership should sit with the teams that control identity policy, privileged access, and service workflow design, not with the support channel alone. Support can operate the process, but identity and access owners must define what the process is allowed to do and how it is reviewed.
👉 Read our full editorial: KI-agent self-resolution changes human ITSM governance assumptions