Article
Your infrastructure looks healthy. CPU is normal, latency is low, HTTP 200s across the board. Meanwhile, your AI agent has been looping on the same subtask for eleven turns, hallucinating tool parameters, and burning $40 of tokens on work it will never complete. Nothing in your monitoring stack flagged a single alert.
This is the defining failure mode of production agentic systems — and it's why everything most teams know about observability needs to be rebuilt from scratch for LLM agents.
Our Take on LLM Agent Monitoring Production
Traditional APM tells you whether your system is running. For LLM agents, you need to know whether it's working — and those are completely different questions. As Microsoft's Zero Trust SFI team puts it, "uptime and error rates are not good indicators of quality and reliability in AI systems." That's not a minor caveat. It invalidates the entire monitoring playbook that most engineering teams have spent years building.
We think agent observability requires three things most teams don't have yet: semantic evaluation (not just status codes), thread-level tracing across multi-turn conversations, and business-outcome alignment. Teams that get all three will catch failures that currently go completely undetected.
The governance dimension matters too. PwC frames agent-specific risks as a distinct category — accountability gaps from autonomy, cascading errors across agent chains, and unpredictable behavior — that require observability as a complement to governance frameworks, not a replacement. When an agent can call external APIs, write to databases, and initiate workflows autonomously, monitoring isn't a DevOps concern. It's a board-level risk management concern.
What the Research Shows
The data on where production agents actually fail is more specific than most practitioners expect. AgentFixer research on IBM's CUGA system, applied across AppWorld and WebArena benchmarks, found that parsing-related incidents — malformed JSON, missing schema fields, instruction non-compliance — account for nearly 38% of all task failures. Not reasoning errors. Not model capability gaps. Output formatting failures.
That finding reshapes where observability investment should go. If 38% of your agent failures are schema violations, you need output validation monitoring before you need anything else.
The broader market reflects how seriously enterprises are taking this. The Dynatrace Application Observability Report found that 70% of organizations increased observability budgets last year, with 75% planning further increases. AI capabilities are now the #1 vendor selection criterion at 29% — ahead of cloud compatibility. Yet only 28% of organizations currently connect observability data to measurable business outcomes. Organisations are spending more on monitoring and getting less signal back on what actually matters.
The ArXiv evaluation-driven development research makes the architectural case explicit: classical test-driven development fundamentally fails for LLM agents because of open-ended behaviors, emergent outcomes, and the need for continuous post-deployment adaptation. You can't write a deterministic unit test for an agent that may respond differently to the same input twice. The evaluation framework has to be probabilistic, continuous, and layered.
📘 Note
An agent that returns valid HTTP 200 responses with sub-200ms latency can simultaneously be stuck in an unproductive loop, hallucinating tool arguments, and producing outputs that are factually wrong — infrastructure metrics will not catch any of this.
On tooling standards, Langfuse's observability team documents that the industry is converging on OpenTelemetry as the collection standard, with Pydantic AI, smolagents, and Strands Agents now natively emitting OTel traces. Amazon Bedrock AgentCore uses AWS CloudWatch Transaction Search with OpenTelemetry instrumentation for exactly this purpose. The standard is settling — which means teams without an OTel-based agent telemetry pipeline are already behind.
Who's Already Doing It
Microsoft's production deployment tells us something about the scale this problem operates at. Microsoft Agent 365 manages AI agents built across Copilot Studio, Azure Foundry, and third-party runtimes, with observability integrated directly into Microsoft Defender for anomaly and misuse detection. When you're running agents across an ecosystem of that size, monitoring becomes indistinguishable from security — which is precisely how Microsoft frames it.
Accenture's approach to multi-agent monitoring is worth examining for its specificity. The AI Refinery SDK exposes metrics that most teams haven't thought to track: inter-agent message counts, per-pair token flows (input/output/total), and an orchestration overhead ratio at p95 — the fraction of orchestrator time spent on coordination rather than actual agent execution. That last metric is particularly valuable. A high orchestration overhead ratio tells you your multi-agent architecture is spending more time managing itself than doing work, which is a system design problem, not a model problem.
In our own work with agentic workflows, the pattern we see repeatedly is teams that instrument request-level traces but miss thread-level continuity. An agent might fail on turn 11 of a conversation because of a bad memory write on turn 6. Redis's engineering analysis makes this explicit: decision-path tracing across the full conversation thread reveals compounding errors that single-request APM is structurally blind to. The teams catching these failures earliest are those who treat each multi-turn session as a single observable unit, not a series of independent API calls.
If you prefer a walkthrough, this covers the core concepts:
[VIDEO_EMBED]
Where Most Teams Go Wrong
The most common mistake we see is building an agent observability stack that looks impressive but measures the wrong things. Teams instrument token counts, latency percentiles, and error rates — then feel covered. They're not.
LangChain's production team notes that the same input can produce different results due to LLM probabilistic sampling and prompt sensitivity, meaning development behavior doesn't predict production behavior. This makes deterministic threshold alerting — "alert if latency > 2s" — nearly useless for catching quality failures. An agent can respond in 800ms with a confidently wrong answer, and your alert never fires.
The second mistake is treating output parsing failures as an edge case. AgentFixer's research found that industry responses to parsing failures are "often ad hoc: brittle regex filters, late-stage schema enforcement, or one-off prompt tweaks" — creating technical debt without preventing future incidents. When nearly 4 in 10 failures come from malformed outputs, a post-hoc regex filter is not a monitoring strategy. Schema validation and structured output enforcement need to be first-class observability primitives, not afterthoughts.
The third mistake is the KPI gap. Only 28% of organizations use AI to connect observability data to business outcomes, per the Dynatrace report. Teams track whether the agent ran but not whether it helped. Task completion rate, user correction frequency, downstream process error rate — these are the metrics that tell you whether your agent is delivering value. Without them, you're optimizing for availability rather than outcomes.
What We'd Do
Start with output schema validation before anything else. Given that parsing failures represent ~38% of production task failures, enforcing structured outputs and monitoring schema violation rates gives you more reliability per engineering hour than almost any other investment. Log every output, validate it against your expected schema, and alert on violation rate trends — not just individual failures.
Build thread-level traces, not just request-level traces. Every multi-turn agent session should be traceable as a single coherent unit, with each decision point, tool call, memory read, and memory write linked in sequence. When an agent fails on turn 8, you need to see turns 1 through 7 in context. OTel-native frameworks make this achievable without custom instrumentation from scratch — use them.
Add a semantic evaluation layer. LLM-as-a-judge evaluation — where a second model scores the first model's outputs against defined criteria — runs online alongside production traffic and catches quality failures that no infrastructure metric will surface. Maxim AI's observability framework identifies this, alongside human review loops, as the capability layer that separates genuine agent observability from dressed-up APM. Start with automated evaluation on your highest-stakes workflows, then add human review queues for low-confidence outputs.
Connect at least two business-outcome metrics from day one. Pick the outcomes your agent is supposed to affect — task completion rate, escalation rate, downstream error rate, user correction frequency — and instrument them alongside your technical telemetry. The 72% of organizations missing this connection aren't flying blind exactly, but they're flying without a destination. The teams that close this gap first will have a compounding advantage in knowing where to invest next.
Finally, treat your observability stack as a governance asset, not just an engineering tool. Microsoft's SFI guidance is explicit that AI agents increasingly hold elevated privilege — accessing sensitive data, calling external APIs, initiating workflows. Audit trails, PII detection in agent outputs, and anomaly alerts for unexpected tool invocations aren't optional extras. They're the foundation of responsible deployment.
The teams getting this right aren't doing anything exotic. They're applying rigorous engineering discipline to a layer — semantic quality — that traditional monitoring simply wasn't built to see. Infrastructure health and agent health are different measurements of different things. Building the capability to track both, and to connect both to business outcomes, is the actual work of LLM agent monitoring in production.
If you're working through this at your organisation, we'd genuinely like to hear what failure modes you're running into — and what's working.
Sources
- AI observability for enterprise AI agents — PwC
- Observability for Generative AI and agentic AI systems — Microsoft Learn (SFI)
- Observability — Microsoft Agent 365 Admin
- Get started with AgentCore Observability — Amazon Bedrock
- AI Agent Tracing: Debug GenAI Systems in Production — Redis
- AgentFixer: From Failure Detection to Fix Recommendations — ArXiv
- Evaluation-Driven Development of LLM Agents: A Process Model — ArXiv
- AI Agent Observability, Tracing & Evaluation with Langfuse
- Metrics & Traces Reference — Accenture AI Refinery SDK
- Agent Observability: The Definitive Guide — Maxim AI
- Agent Observability: How to Monitor and Evaluate LLM Agents — LangChain Blog
- Dynatrace Application Observability Report 2025