cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
Impactful Individual
Impactful Individual

Adding a bot to teams

Hi All,

 

Just starting out with PVA and want to understand the best way to add a bot to Teams.

My main concern is access and authentication. I've read all the relevant articles but it is still not clear to me.

 

It seems that when we publish a bot, it is public to any MS tenant as long as they have the bot ID. The way I see around this is to set up SSO but that is a very bad user experience from inside teams. The user expects to be logged in already and shouldn't need to log in again. What is the correct way to add a bot to teams without requiring additional log in but limited to only users in our org?

 

Thanks

Sam

1 ACCEPTED SOLUTION

Accepted Solutions
Super User
Super User

Hi @SamPo ,

 

 

You mentioned the SSO, but the SSO is not available yet inside the MS Teams. Today you can use only the Authentication.

 

Regarding your question, the idea of the Teams implementation and the Bot ID is to be secret/private, only users that you share the Bot ID and the ID generated to publish inside the Teams can connect with your chatbot.

We don't recommend you share these IDs with other people for this reason because when the user gets these credentials, he can implement it in another environment.


Did I answer your question? Mark my post as a solution!
Thanks!

Renato Romão,

Connect with me here 😉

Power Virtual Agents course (+2.300 students | PROMOTIONS) : English | Português

View solution in original post

5 REPLIES 5
Super User
Super User

Hi @SamPo ,

 

 

You mentioned the SSO, but the SSO is not available yet inside the MS Teams. Today you can use only the Authentication.

 

Regarding your question, the idea of the Teams implementation and the Bot ID is to be secret/private, only users that you share the Bot ID and the ID generated to publish inside the Teams can connect with your chatbot.

We don't recommend you share these IDs with other people for this reason because when the user gets these credentials, he can implement it in another environment.


Did I answer your question? Mark my post as a solution!
Thanks!

Renato Romão,

Connect with me here 😉

Power Virtual Agents course (+2.300 students | PROMOTIONS) : English | Português

View solution in original post

Impactful Individual
Impactful Individual

@renatoromao Sorry, when I said SSO, I meant authentication via Azure. We have set this app and it works fine but I'm trying to avoid the need completely.

 

As to your second point - this is exactly my issue. It seems that the bot can be added to any team (on any tenant) simply by pasting the app ID into a chat. There's no way I can consider this a secured channel if anyone can access the bot without logging in when all they need is the app ID.

 

Thanks

Sam

As Renato indicates; the paradigm PVA uses is to have all Chatbots be publically visible (if you have their ID) then protect sensitive topics.   We are working on improved Team's integration have given this feedback to the Teams Feature owner PM. 

If you want to track the status you can add the ideas to https://ideas.powervirtualagents.com  

 

Super User III
Super User III

Hi!

Did you consider as a potential workaround to implement a user's White List (either Sharepoint, or CDS) and once a user starts interacting with your bot, validate it inmediatelly against it by means of a Power Automate Flow?

In the example below, you will see a very simple "Authorize if not me" just for testing purposes

PVA_Authorization.png



Each time you click on any of our inspiring answers 'Thumb up' icon...
...an ewok scapes from the stormtroopers.

Be grateful, Thumbs up! Save the Galaxy for free!


Escribo sobre Power Automate en:
https://medium.com/anyone-can-automate/

Proud to be a Flownaut!



Super User
Super User

Hi @SamPo ,

 

Now it's available to use SSO with Microsoft Teams in Public Preview. You can now configure your bots to automatically use Teams’ authentication, so their end users don’t have to sign-in when chatting with a PVA bot in the Teams channel, streamlining the user’s experience.

Power Virtual Agents support for Teams channel Single Sign-on is available in Public Preview | Micro...


Did I answer your question? Mark my post as a solution!
Thanks!

Renato Romão,

Connect with me here 😉

Power Virtual Agents course (+2.300 students | PROMOTIONS) : English | Português

Helpful resources

Announcements
Microsoft Ignite

Microsoft Ignite

Join digitally, March 2–4, 2021 to explore new tech that's ready to implement. Experience the keynote in mixed reality through AltspaceVR!

New Super Users

Meet the Power Virtual Agents Community Super Users!

Congratulations to our Season 1 2021 Super User Crew!

PVA Commnity Blog

NEW Power Virtual Agents Community Blog

View articles posted by fellow community members on the Power Virtual Agents Community Blog!

New Badges

New Solution Badges!

Check out our new profile badges recognizing authored solutions!

Users online (27,501)