Non-human identities are getting more and more important. IAM has the challenge to manage them with the same standards as human identities. Over the last years many tools and best practices have been developed to improve the situation. However, the more those identities mimic behavior of humans the harder current concepts work without reducing security and governance. An example is Robot Process Automation (RPA), which aims to automate processes done by humans, often for application which do not offer APIs. Subsequently those tools are using UI automation to achieve this goal. However, zero trust and identity controls like MFA or least privilege will interrupt this business processes automation. If you are interested to learn more about this topic, join this discussion by Mercedes-Benz and DXC about core principles to consider closing this gap.