Skip to main content
Home/Glossary/Agentic AI

Agentic AI

AI systems that autonomously plan and take multi-step actions toward a goal — invoking tools, making decisions, and adapting — rather than producing a single one-shot response.

AI AgentsAlso called: "agentic AI", "agentic artificial intelligence"

Agentic AI describes systems that pursue a goal through autonomous, multi-step action rather than a single one-shot answer. An agentic system plans, invokes tools, observes the results, makes decisions, and adapts its next step based on what it learns — looping until the task is done or it needs human input.

What separates agentic from one-shot AI

  • Planning and decomposition — breaking a goal into sub-tasks instead of answering immediately.
  • Tool use — calling external functions, APIs, and data sources to act on the world (see function calling).
  • Iteration with feedback — using the output of one action to decide the next, rather than committing to a fixed script.
  • Some autonomy and memory — operating with limited supervision and carrying context across steps.

The building blocks come straight from the agent ecosystem: function calling / tool use is how the model actually invokes a capability; the Model Context Protocol standardizes how those tools and data sources are discovered and connected; and Agent2Agent (A2A) lets independent agents coordinate. In practice an AI agent uses MCP to reach its tools and A2A to delegate to peers.

Why it matters for security and operations Autonomy is exactly what makes agentic AI useful and risky. An agent that can read files, send messages, or execute commands inherits the blast radius of those capabilities — and untrusted tool descriptions or tool outputs can hijack its behavior through prompt injection. Treat agentic systems with least-privilege credentials, human-in-the-loop approval for irreversible actions, and sandboxing. The MCP Security Risks post covers the concrete attack classes (tool poisoning, confused-deputy, rug pulls), and Claude Cowork looks at autonomous desktop agents from an MSP angle.

For orchestration patterns see Claude Code Dynamic Workflows and the Claude Agent SDK guide.

Related Tools

Related Articles

View all articles
What Is the Model Context Protocol (MCP)? The USB-C Port for AI, Explained

What Is the Model Context Protocol (MCP)? The USB-C Port for AI, Explained

Model Context Protocol (MCP) is the open standard — created by Anthropic in late 2024 — that lets any AI application connect to tools, data, and prompts through one uniform wire protocol. Here's how the host/client/server architecture, primitives, and transports actually work.

Read article →
What Is an MCP Server? How Model Context Protocol Servers Work (and How to Use One)

What Is an MCP Server? How Model Context Protocol Servers Work (and How to Use One)

An MCP server is a small program that exposes tools, resources, and prompts to an AI app over a standard protocol. Here is what it actually does, local vs remote transports, a working config block, and how to add one to your AI coding CLI.

Read article →
MCP Security Risks: A Practical Threat Model for Teams Connecting AI Agents to Tools

MCP Security Risks: A Practical Threat Model for Teams Connecting AI Agents to Tools

MCP isn't uniquely unsafe, but every server you connect widens your attack surface. A risk catalogue, the trust model you're actually accepting, and the governance controls MSPs and security teams should put in place.

Read article →
Claude Cowork: Anthropic's Autonomous Desktop Agent (What MSPs Need to Know)

Claude Cowork: Anthropic's Autonomous Desktop Agent (What MSPs Need to Know)

Claude Cowork is an agentic mode in the Claude Desktop app that reads, edits, and organizes files on your computer and runs multi-step tasks on its own. Here's how it works, who can use it, and the security and governance controls IT teams should put in place first.

Read article →

Explore More AI Agents

View all terms

Agent2Agent (A2A)

An open protocol originated by Google in April 2025 for interoperability between AI agents — letting agents from different vendors and frameworks discover each other, advertise capabilities, and collaborate. Complementary to MCP, which connects agents to tools.

Read more →

AI Agent

An LLM-driven system that perceives context, decides, and acts via tools and APIs in a loop to accomplish tasks — often with memory and some degree of autonomy.

Read more →

Function Calling (Tool Use)

A capability where an LLM outputs a structured call (tool name plus JSON arguments) matching a developer-supplied JSON-Schema tool definition, which the host application executes and feeds back to the model.

Read more →

Model Context Protocol (MCP)

An open, JSON-RPC–based client-server standard introduced by Anthropic in November 2024 that lets AI applications discover and connect to external tools, data sources, and prompts in a uniform way — "USB-C for AI integrations."

Read more →
Back to glossary