Back to Blog

Building Enterprise AI Agents with Microsoft Tools

April 22, 202610 min readMichael Ridland

Microsoft's AI agent stack has matured significantly over the past eighteen months. What was a collection of disconnected tools in early 2025 is now a coherent platform for building, deploying, and managing enterprise AI agents. If your organisation runs on Azure, this is the most efficient path to production-grade AI agents.

We've been building enterprise AI agents with Microsoft tools since Semantic Kernel was in preview. Here's what the stack looks like today and how to use it effectively.

The Microsoft AI Agent Stack in 2026

The stack has three main layers, and understanding how they fit together saves weeks of confusion:

Azure AI Foundry is the management plane. It's where you deploy models, configure content safety, set up evaluation pipelines, and manage the operational side of AI. Think of it as the control centre for your AI infrastructure.

Semantic Kernel is the development framework. It's the SDK (available in C# and Python) that you use to actually build agents - defining their goals, giving them tools (plugins), managing their memory, and orchestrating multi-step workflows.

Azure OpenAI Service provides the language models. GPT-4o, GPT-4.1, and other models deployed within your Azure subscription, behind your network boundaries, with your data residency guarantees.

These three work together. Azure AI Foundry hosts your model endpoints and manages safety. Semantic Kernel calls those endpoints and wraps them in agent logic. Your application code uses Semantic Kernel to build the actual agent experience.

There are other pieces - Azure AI Search for retrieval, Azure Cosmos DB for agent memory, Azure Functions for serverless tool execution - but those three form the core.

Architecture Patterns That Work

After deploying more than 50 AI agents for Australian businesses, we've settled on a few architecture patterns that consistently work well in the Microsoft ecosystem.

Pattern 1 - The Single Agent with Rich Tools

This is the most common pattern and the one you should start with. One agent, one goal, multiple tools.

Example: A procurement agent that helps employees find approved suppliers, check pricing, and submit purchase requests.

The agent has access to:

  • A SharePoint plugin for company procurement policies
  • A Dynamics 365 plugin for supplier lookup and pricing
  • An approval workflow plugin that creates Power Automate flows
  • An Azure AI Search index over historical purchase orders

The agent uses Semantic Kernel's automatic function calling to decide which tools to use based on the user's request. "I need to order 500 safety helmets" triggers supplier lookup, price comparison against historical orders, and a draft purchase request for approval.

Why this works: Single agents are easier to test, debug, and govern. You know exactly what the agent can do because you defined its tools. The failure modes are predictable. Enterprise governance teams can review and approve the agent's capabilities without needing to understand multi-agent orchestration.

Pattern 2 - Sequential Agent Pipeline

Multiple agents, each handling one stage of a workflow, with structured handoffs between them.

Example: A contract review pipeline.

  • Agent 1 (Extractor): Reads the contract and extracts key terms, dates, obligations, and risk factors into a structured format
  • Agent 2 (Analyst): Compares extracted terms against company standards and flags deviations
  • Agent 3 (Drafter): Produces a summary memo with recommendations for the legal team

Each agent runs independently and passes its output to the next. If Agent 1 fails, you retry Agent 1 without re-running the whole pipeline. If Agent 2 flags something unusual, a human reviewer can intervene before Agent 3 produces the memo.

In Semantic Kernel, you implement this with the Agent Chat abstraction, defining a sequential flow where each agent gets the previous agent's output as context.

Why this works: Each agent is specialised and testable. The pipeline is observable - you can see exactly what each agent produced and where things went wrong. It maps well to existing business processes that already have stages and handoffs.

Pattern 3 - Supervisor Agent with Specialists

One agent coordinates work across multiple specialist agents.

Example: An IT helpdesk supervisor agent.

The supervisor agent receives incoming IT support requests and decides which specialist to route them to:

  • A password reset agent that handles Active Directory operations
  • A software provisioning agent that manages licence assignment
  • A network troubleshooting agent that runs diagnostics
  • A hardware request agent that creates procurement tickets

The supervisor understands each specialist's capabilities and routes requests accordingly. If a request doesn't fit any specialist, the supervisor escalates to a human.

Semantic Kernel supports this through its Agent Group Chat feature, where you define a selection strategy that determines which agent handles each turn.

Why this works: It mirrors how human teams operate. Specialists get good at their specific domain. The supervisor handles routing and escalation. New specialists can be added without modifying existing agents.

Setting Up the Development Environment

Here's the practical setup for a Microsoft AI agent project:

Azure resources you'll need:

  • Azure OpenAI Service with GPT-4o or GPT-4.1 deployed
  • Azure AI Foundry project for management and evaluation
  • Azure AI Search (if your agent needs to retrieve from documents)
  • Azure Cosmos DB (if your agent needs persistent memory)
  • Azure Key Vault for secrets management
  • Azure Application Insights for monitoring

Development tools:

  • Visual Studio or VS Code with the Semantic Kernel extension
  • .NET 8+ (for C#) or Python 3.10+ (for Python)
  • Azure CLI for resource management
  • Semantic Kernel NuGet packages or pip packages

Estimated Azure costs for development: $800-$2,000 AUD/month depending on model usage. GPT-4o is significantly cheaper than GPT-4 was, so agent development is more cost-effective now than it was a year ago.

Building Your First Enterprise Agent - Step by Step

Here's the approach we use with our AI consulting clients:

Step 1 - Define the Agent's Scope

Before writing code, write a one-page document that answers:

  • What does this agent do? (Specific task, not vague goal)
  • What tools does it need access to? (List every system it needs to interact with)
  • What should it never do? (Guardrails and boundaries)
  • How will you know it's working? (Success metrics)
  • What happens when it fails? (Escalation path)

In our experience, the teams that skip this step spend twice as long building the agent and end up with something that doesn't match what the business actually needed.

Step 2 - Build the Plugins First

In Semantic Kernel, plugins are the agent's hands. Build and test them independently before you build the agent itself.

Each plugin should:

  • Do one thing well
  • Have clear input and output types
  • Include detailed descriptions (these become part of the agent's understanding of what tools it has)
  • Handle errors gracefully and return meaningful error messages
  • Log what it does for observability

Test each plugin with unit tests. If the SharePoint plugin can't retrieve documents reliably, the agent won't work no matter how good the prompt engineering is.

Step 3 - Design the System Prompt

The system prompt is where you define the agent's personality, capabilities, and guardrails. For enterprise agents, this typically includes:

  • The agent's role and purpose
  • The list of available tools and when to use each one
  • Rules about what the agent must never do
  • How to handle ambiguity (ask clarifying questions vs make assumptions)
  • Formatting requirements for responses
  • Escalation criteria

We maintain a library of tested system prompt templates across industries. The difference between a good system prompt and a mediocre one is the difference between an agent that handles 80% of requests correctly and one that handles 95%.

Step 4 - Implement Guardrails

Enterprise agents need guardrails at multiple levels:

Content safety: Azure AI Foundry provides built-in content filtering. Configure it to match your organisation's policies.

Tool-level permissions: Not every user should trigger every tool. Implement role-based access within your plugins.

Output validation: Check agent responses before returning them to users. Does the response contain PII that shouldn't be exposed? Does it make claims that need verification?

Rate limiting: Prevent runaway agent loops that burn through your Azure OpenAI quota.

Audit logging: Every agent action should be logged for compliance. Azure Application Insights combined with custom telemetry gives you a complete audit trail.

Step 5 - Build the Evaluation Pipeline

This is the step most teams skip and regret. Before deploying to production, you need an evaluation pipeline that automatically tests your agent against a set of known inputs and expected outputs.

Azure AI Foundry's evaluation features let you:

  • Define test datasets with expected outcomes
  • Run the agent against those datasets automatically
  • Measure accuracy, relevance, and safety metrics
  • Compare performance across prompt versions or model updates

We typically build a test set of 50-100 representative queries for each agent. When we make changes, we run the evaluation pipeline before deploying. This catches regressions that manual testing misses.

Common Mistakes We See

Mistake 1: Starting with multi-agent when single-agent would work. Multi-agent systems are harder to build, test, and debug. Start with one agent. Add more agents only when you have a clear reason why one agent can't handle the task.

Mistake 2: Ignoring the data quality problem. Your agent is only as good as the data it can access. If your SharePoint is a mess of outdated documents, your retrieval agent will return outdated answers. Clean your data before building the agent.

Mistake 3: Not involving IT security early enough. We've seen projects where the development team built a working agent in four weeks and then spent twelve weeks getting security approval. Bring your security team in during Step 1, not after the agent is built.

Mistake 4: Over-engineering the first version. Ship a working agent that handles the top 5 request types. Add capabilities iteratively based on actual usage data. The agent you think users need and the agent they actually need are rarely the same.

Mistake 5: Skipping the human fallback. Every enterprise agent needs a clear path to a human. When the agent can't handle a request, or when confidence is low, it should hand off gracefully. Agents that try to answer everything badly are worse than agents that escalate early.

Timeline and Budget for Enterprise AI Agents

Based on our AI agent development projects, here's what realistic timelines and budgets look like:

Phase Duration Cost Range (AUD)
Discovery and scoping 1-2 weeks $8,000-$15,000
Proof of concept 2-4 weeks $20,000-$40,000
Production build 6-12 weeks $60,000-$150,000
Testing and deployment 2-4 weeks $15,000-$30,000
Ongoing support (monthly) Continuous $3,000-$8,000

These ranges vary based on complexity, number of integrations, and security requirements. A single-agent document processing system is on the lower end. A multi-agent system with five integrations, custom UI, and SOC 2 compliance requirements is on the higher end.

Azure infrastructure costs for a production agent typically run $2,000-$8,000 AUD/month depending on usage volume and model selection.

Why Microsoft for Enterprise Agents

We work with multiple frameworks and cloud providers. We recommend the Microsoft AI Agent Framework for enterprise agents when:

  • The organisation already runs on Azure (most large Australian enterprises do)
  • Compliance and data residency are requirements (Azure has Australian data centres)
  • The development team knows C# (strong in the Australian enterprise market)
  • IT governance needs to approve the architecture (Azure's compliance certifications simplify this)
  • The agent needs to integrate with Microsoft 365 data (SharePoint, Outlook, Teams)

It's not the right choice for every project. If you need to use non-Microsoft models, work in a multi-cloud environment, or your team is purely Python-focused and doesn't want to learn the Microsoft ecosystem, other options may suit you better.

Get Started

If you're planning an enterprise AI agent project on Microsoft tools, we can help you move from planning to production efficiently. We've done this across banking, professional services, construction, and government, and we know where the common pitfalls are.

Talk to our team about your project, or explore our AI agent development services to see how we work.