Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
The Confluence Cloud Microsoft 365 Copilot connector allows your organization to index Confluence content. After you configure the connector and index data from the Confluence site, end users can search for that content in Microsoft Search and Microsoft 365 Copilot.
This article is intended for Microsoft 365 administrators who are responsible for configuring, running, and monitoring the Confluence Cloud Copilot connector. It supplements the general instructions provided in setting up Microsoft Copilot connectors in the Microsoft 365 admin center.
Capabilities
- Users can ask natural language questions about Wiki content in Copilot, such as summarizing the architecture document or getting access to a portal.
- Users can perform natural language queries for accurate responses.
Prerequisites
- You must be the admin for your organization's Microsoft 365 tenant and the admin for your organization's Confluence site.
- Make sure you have authentication credentials with the right access.
Important
- In January 2024, Atlassian deprecated a set of Confluence cloud APIs (version 1) and released new APIs (version 2). For more information, see changelog updates and general updates. Some of these deprecated v1 APIs are used by the connector for OAuth connections only. Hence, after this change, your existing Confluence connections may stop working.
- In December 2023, a new set of v2 APIs was released to all customers. After the release, your existing connections needed reauthentication. The new v2 APIs also require some more scopes (as compared to the previous v1 APIs), which need to be provided during re-authentication. New set of scopes required (complete list) –
read:group:confluence,read:user:confluence,read:content-details:confluence,Read:space:confluence,Read:permission:confluence,read:audit-log:confluence,read:content.metadata:confluenceandread:page:confluence. - Starting from July 2025, Confluence Cloud connector supports indexing comments and attchement on the pages. To leverage this new capability, your existing connections needed reauthentication and two more scopes (
read:comment:confluence,read:attachment:confluence) must be added to the OAuth 2 integation app.
Get started
1. Display name
A Display name is used to identify each reference in Copilot, helping users easily recognize the associated file or item. Display name also signifies trusted content. Display name is also used as a content source filter. A default value is present for this field, but you can customize it to a name that users in your organization recognize.
2. Confluence Cloud URL
To connect to your Confluence site, use your site URL. A Confluence cloud site URL typically looks like https://<organization_name>.atlassian.net/.
3. Authentication type
To authenticate and synchronize content from Confluence On-prem, choose one of the two supported methods:
Tip
Make sure the service account has view access to the Confluence content you want to index.
a. Basic authentication
To authenticate using basic auth, enter your username (usually your email) and API token. To help generate an API token, see Atlassian's guide.
b. OAuth 2.0 (recommended)
Register an app in Confluence Cloud so that the Microsoft Search app and Microsoft 365 Copilot can access the instance. To learn more, see Atlassian Support documentation on how to Enable OAuth 2.0.
The following steps provide guidance on how to register the app:
Sign in to Atlassian Developer console with your Atlassian Confluence admin account.
Click on Create and select
OAuth 2.0 integration.Provide an appropriate name for the application and create the new app.
Navigate to
Permissionsfrom the navigation pane on the left. Click Add forConfluence API. Once added, click Configure, and Edit scopes, and select the following scopes.Scope name Code Description View content details read:content-details:confluenceCrawl content satisfying criteria. View groups read:group:confluenceTo access group permissions of content. View user details read:user:confluenceTo access individual user details to support permissions. View audit records read:audit-log:confluenceTo access audit records for Confluence events to support permissions. View pages read:page:confluenceTo access page content details to support permissions. View spaces read:space:confluenceTo access space details to support permissions. View content summaries read:content.metadata:confluenceTo access information about the content to support permissions. View content restrictions and space permissions read:permission:confluenceTo access content restrictions and space permission details to support permissions. View comments read:comment:confluenceView comments on pages or blogposts. View and download content attachments read:attachment:confluenceView and download attachments of a page or blogpost that you have access to. Click Save.
Navigate to
Authorizationfrom the navigation pane on the left. Add the callback URL, for Microsoft 365 Enterprise:https://gcs.office.com/v1.0/admin/oauth/callback, for Microsoft 365 Government:https://gcsgcc.office.com/v1.0/admin/oauth/callbackand save the changes.Navigate to Settings from the navigation pane on the left. You get the Client ID and Secret from this page.
Complete the connection settings step using the Client ID and Secret.
6. Rollout to a limited audience
Deploy this connection to a limited user base if you want to validate it in Copilot and other Search surfaces before expanding the rollout to a broader audience. To know more about the limited rollout, click here.
At this point, you are ready to create the connection for Confluence Knowledge. You can click the "Create" button and the Confluence Cloud Microsoft Graph connector starts indexing page from your Confluence account.
For other settings, like Access Permissions, Data inclusion rules, Schema, Crawl frequency etc., we set defaults based on what works best with Confluence data. The default values are as follows:
| Users | |
|---|---|
| Access permissions | Only people with access to the content in Data source. |
| Map Identities | Data source identities mapped using Microsoft Entra IDs. |
| Content | |
|---|---|
| Include/Exclude space | All |
| Manage Properties | To check default properties and their schema, click here |
| Sync | |
|---|---|
| Incremental Crawl | Frequency: Every 15 mins |
| Full Crawl | Frequency: Every Day |
If you want to edit any of these values, you need to choose the Custom Setup option.
Custom setup
In custom setup, you can edit any of the default values for users, content, and sync.
Users
Access permissions
The confluence Cloud Copilot connector supports search permissions visible to Everyone or Only people with access to this data source. If you choose Everyone, indexed data appears in the search results for all users. If you choose Only people with access to this data source, indexed data appears in the search results for users who have access to it. In Confluence Cloud, security permissions for users and groups are defined using space permissions and page restrictions. Page-level restrictions, if present, take precedence over space permissions.
If there are no page restrictions, the connector checks for space-level permissions -
- In case the space has 'anonymous users' access enabled, the content is visible to all users within your tenant.
- In case 'anonymous access' isn't enabled, the space-level permissions are honored.
- In case space-level permissions aren't defined, the content is not visible to any user in your tenant.
Important
Permissions are managed at the space and page level only, and parent page permissions are not taken into consideration.
If you choose Only people with access to this data source, you need to further choose whether your Confluence site has Microsoft Entra ID provisioned users or non-AAD users.
To identify which option is suitable for your organization:
- Choose the Microsoft Entra ID option if the email ID of Confluence users is same as the UserPrincipalName (UPN) of users in Microsoft Entra ID.
- Choose the non-AAD option if the email ID of Confluence users is different from the UserPrincipalName (UPN) of users in Microsoft Entra ID.
Note
- If you choose Microsoft Entra ID as the type of identity source, the connector maps the email IDs of users obtained from Confluence directly to UPN property from Microsoft Entra ID.
- If you chose "Non-AAD" for the identity type, see Map your non-Azure AD Identities for instructions on mapping the identities. You can use this option to provide the mapping regular expression from email ID to UPN.
- Updates to users or groups governing access permissions are synced in full crawls only. Incremental crawls don't currently support the processing of updates to permissions.
Content
Include or exclude data that you want to index
With a Confluence Query Language (CQL) string, you can specify conditions for syncing pages. It's like a Where clause in a SQL Select statement. For example, you can choose to index only the pages that were modified in the last two years. To learn about creating your own query string, see Advanced Searching using CQL. The connector indexes all blogs and pages by default.
Tip
You may use the CQL filter to index content modified after a certain time using, lastModified >= "2018/12/31"
Use the preview results button to verify the sample values of the selected properties and CQL string.
Manage properties
To add or remove available properties from your Aha!, assign a schema to the property (define whether a property is searchable, queryable, retrievable, or refinable), change the semantic label, and add an alias to the property. The following properties are indexed by default.
| Default property | Label | Description |
|---|---|---|
| Authors | authors |
Name of people who participated/collaborated on the item in the data source. |
| CreatedByName | createdBy |
Name of the person who most recently edited the item in the data source. |
| CreatedOn | createdDateTime |
Date and time that the item was created in the data source. |
| IconUrl | iconUrl |
The associated icon URL of the item. |
| Title | title |
The title of the item that you want to be shown in search and other experiences. |
| UpdatedByName | lastModifiedBy |
Name of the person who most recently edited the item in the data source. |
| UpdatedOn | lastModifiedDateTime |
Date and time the item was last modified in the data source. |
| Url | url |
The target URL of the item in the data source. |
Preview data
Use the preview results button to verify selected properties and filters.
Sync
The refresh interval determines how often your data is synchronized between the data source and the Confluence Cloud Copilot connector index. There are two types of refresh intervals – full crawl and incremental crawl. For more details, click here. You can change the default values of the refresh interval from here if you want to.
Review and test your connection
- For testing, you can choose publish to limited audience
- Search and validate your indexed content and permissions using Index browser
- You may find answers to common questions in our FAQ section
For Microsoft Search, if you need to customize the search results page. To learn about customizing search results, see Customize the search results page.
If you have issues or want to provide feedback, contact Microsoft Graph | Support.