Čítať v angličtine

Zdieľať cez

Authentication for Copilot for Service

  • Článok

To enable Microsoft 365 Copilot for Service, you have two authentication options for end users:

  • Authenticate with Microsoft: This option is the default, and you can only embed Copilot for Service in Teams.
  • Authenticate manually: Use Microsoft Entra ID to authenticate by following the steps in this article.

Create an app registration

  1. Go to Microsoft Azure and use an administrator account to sign in to the same tenant as Copilot for Service.
  2. Select App registrations, or if it isn't present, use the search bar to find and select it.
  3. Select New registration, and then type a name for the registration. The name you select will be helpful when referring to the Copilot agent. For example, "MyCopilot".
  4. In Supported account types, select Accounts in any organizational directory (Any Microsoft Entra ID directory - Multitenant) and personal Microsoft accounts (e.g. Skype, Xbox).
  5. Leave the Redirect URI section blank for now, and select Register.
  6. When the registration completes, go to Overview and copy the Application (client) ID and paste it in a temporary file to use later.

Add the redirect URL

  1. Go to Authentication, and then select Add a platform.
  2. In Platform configurations, select Add a platform, and then select Web.
  3. In Redirect URIs, type 'https://token.botframework.com/.auth/web/redirect'.
  4. In the Implicit grant and hybrid flows section, turn on both Access tokens (used for implicit flows) and ID tokens (used for implicit and hybrid flows).
  5. Select Configure.
  6. Select Add URI, and enter 'https://europe.token.botframework.com/.auth/web/redirect'.
  7. Select Save. 

Generate a client secret 

  1. Go to Certificates & secrets.
  2. In Client secrets, select New client secret.
  3. Select the expiry period. Select the shortest period that's relevant for the life of your AI agent.
  4. Select Add to create the secret.
  5. Store the Value for the secret in a temporary file to use later, when you configure your AI agent's authentication. 

Configure Copilot for Service authentication

  1. Go to the Copilot for Service portal.
  2. In the sitemap, in Settings, select Authentication.
  3. Select Authenticate manually.
  4. Copy and paste your client ID and secret in the corresponding fields.
  5. At the top of the page, select Save, and then test and validate your changes.
  6. Select Overview from the sitemap, then select Publish to enable your changes.

SSO configuration

You can configure single sign-on for web and Teams channels. See the following articles for configuration information: