cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
SamPo
Impactful Individual
Impactful Individual

Adding a bot to teams

Hi All,

 

Just starting out with PVA and want to understand the best way to add a bot to Teams.

My main concern is access and authentication. I've read all the relevant articles but it is still not clear to me.

 

It seems that when we publish a bot, it is public to any MS tenant as long as they have the bot ID. The way I see around this is to set up SSO but that is a very bad user experience from inside teams. The user expects to be logged in already and shouldn't need to log in again. What is the correct way to add a bot to teams without requiring additional log in but limited to only users in our org?

 

Thanks

Sam

1 ACCEPTED SOLUTION

Accepted Solutions
renatoromao
Super User
Super User

Hi @SamPo ,

 

 

You mentioned the SSO, but the SSO is not available yet inside the MS Teams. Today you can use only the Authentication.

 

Regarding your question, the idea of the Teams implementation and the Bot ID is to be secret/private, only users that you share the Bot ID and the ID generated to publish inside the Teams can connect with your chatbot.

We don't recommend you share these IDs with other people for this reason because when the user gets these credentials, he can implement it in another environment.


Did I answer your question? Mark my post as a solution!
Thanks!

Renato Romão,

Connect with me here 😉

Power Virtual Agents course (+2.650 students) : English | Português

View solution in original post

5 REPLIES 5
renatoromao
Super User
Super User

Hi @SamPo ,

 

 

You mentioned the SSO, but the SSO is not available yet inside the MS Teams. Today you can use only the Authentication.

 

Regarding your question, the idea of the Teams implementation and the Bot ID is to be secret/private, only users that you share the Bot ID and the ID generated to publish inside the Teams can connect with your chatbot.

We don't recommend you share these IDs with other people for this reason because when the user gets these credentials, he can implement it in another environment.


Did I answer your question? Mark my post as a solution!
Thanks!

Renato Romão,

Connect with me here 😉

Power Virtual Agents course (+2.650 students) : English | Português

View solution in original post

SamPo
Impactful Individual
Impactful Individual

@renatoromao Sorry, when I said SSO, I meant authentication via Azure. We have set this app and it works fine but I'm trying to avoid the need completely.

 

As to your second point - this is exactly my issue. It seems that the bot can be added to any team (on any tenant) simply by pasting the app ID into a chat. There's no way I can consider this a secured channel if anyone can access the bot without logging in when all they need is the app ID.

 

Thanks

Sam

chass
Administrator
Administrator

As Renato indicates; the paradigm PVA uses is to have all Chatbots be publically visible (if you have their ID) then protect sensitive topics.   We are working on improved Team's integration have given this feedback to the Teams Feature owner PM. 

If you want to track the status you can add the ideas to https://ideas.powervirtualagents.com  

 

efialttes
Super User
Super User

Hi!

Did you consider as a potential workaround to implement a user's White List (either Sharepoint, or CDS) and once a user starts interacting with your bot, validate it inmediatelly against it by means of a Power Automate Flow?

In the example below, you will see a very simple "Authorize if not me" just for testing purposes

PVA_Authorization.png



Each time you click on any of our inspiring answers 'Thumb up' icon...
...an ewok scapes from the stormtroopers.

Be grateful, Thumbs up! Save the Galaxy for free!


Escribo sobre Power Automate en:
https://medium.com/anyone-can-automate/

Proud to be a Flownaut!



renatoromao
Super User
Super User

Hi @SamPo ,

 

Now it's available to use SSO with Microsoft Teams in Public Preview. You can now configure your bots to automatically use Teams’ authentication, so their end users don’t have to sign-in when chatting with a PVA bot in the Teams channel, streamlining the user’s experience.

Power Virtual Agents support for Teams channel Single Sign-on is available in Public Preview | Micro...


Did I answer your question? Mark my post as a solution!
Thanks!

Renato Romão,

Connect with me here 😉

Power Virtual Agents course (+2.650 students) : English | Português

Helpful resources

Announcements
PVA_User Group Leader_768x460.jpg

Manage your user group events

Check out the News & Announcements to learn more.

Community Connections 768x460.jpg

Community & How To Videos

Check out the new Power Platform Community Connections gallery!

Carousel 2021 Release Wave 2 Plan 768x460.jpg

2021 Release Wave 2 Plan

Power Platform release plan for the 2021 release wave 2 describes all new features releasing from October 2021 through March 2022.

Welcome Super Users.jpg

Super User Season 2

Congratulations, the new Super User Season 2 for 2021 has started!

Center-of-Excellence-Starter-Kit-cropped 768x460.png

The Total Economic Impact™ of Power Virtual Agents

Read this 2021 commissioned study, conducted by Forrester Consulting.

Top Solution Authors
Users online (2,211)