A managed identity is a cloud-controlled identity for an application, VM, function, or other workload. Instead of embedding passwords, API keys, or certificates in code, the cloud platform creates and manages the identity and issues short-lived tokens when the workload needs to authenticate. This reduces secret handling and helps prevent hardcoded credentials from spreading across repositories, configuration files, and automation pipelines.
In cyber security, managed identities matter because they shrink the attack surface, but they do not remove risk. If a workload is compromised, an attacker may inherit whatever permissions that identity already has, so least privilege and access review still matter. Defenders use managed identities to centralize control, improve rotation hygiene, and limit secret exposure, while monitoring which workloads can assume the identity and what resources they can reach. In cloud incidents, they often appear as the trusted authentication path behind service-to-service access.