web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

Welcome to the Power Platform Communities
Season of Giving Solutions is Here!
Explore Copilot Studio Forums, Blogs & Galleries!
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Copilot Studio / Guest User access to S...
Copilot Studio
Unanswered

Guest User access to SharePoint Content

(0) ShareShare
ReportReport
Posted on by Hansi 6

Dear Community,

 

I have developed a Copilot Studio Bot that leverages SharePoint Content for generative answers.

I also configured "manual" authentication, granted to corresponding permissions to the AAD app and so on.

Everything works fine in Teams when the bot is accessed as a "normal" Tenant/AAD User.

I am getting answers based on SharePoint Documents and SharePoint News Articles.

 

Whenever I access the bot as a AAD guest user, I still get answers from "normal" / non-generative Topics. But I do not get responses from SharePoint content although the user explicitly has access to the SharePoint sites and files.

 

Is there anything I'm missing?

Categories:
General topics
I have the same question (0)
  • remidyon Profile Picture
    remidyon on at

    Hello @Hansi 

    This is a very good question - have you tried using the graph explorer to see what the guest user have access to on sharepoint? Does it return data when you do a search as guest?

     

    Try doing a POST with this URL and query

    https://graph.microsoft.com/v1.0/search/query 

     

    {
 "requests": [
 {
 "entityTypes": [
 "driveItem"
 ],
 "query": {
 "queryString": "YOUR_KEYWORD path:\"https://YOUR_SP_SITE.sharepoint.com/sites/\""
 }
 }
 ]
}

     

  • remidyon Profile Picture
    remidyon on at

    Seems like it is possible (my colleague @adilei made gen answers work for a guest user - see the name of user is empty because it is a guest account)

    remidyon_0-1710253025655.png

     

    What is your authentication mechanism for the guest user? Are you using a "validation code" or did you create an app registration that is multi tenant? 

  • Hansi Profile Picture
    Hansi 6 on at

    Hi @remidyon , thanks for replying!

    I have created a multi-tenant app registration for the authentication.

    I tried your graph request but I'm getting 

     "error": {
 "code": "Forbidden",
 "message": "The service is not authorized for provided user credentials",
 "target": "",
 "httpCode": 403
 },

    Same request works fine for internal user.

    I would be very interested on how @adilei managed to get gen answers for a guest users. Could you share your insights?

  • adilei Profile Picture
    adilei on at

    Let's say that user A is a member of the tenant and user B is a guest. Set up Gen Answers over SharePoint, and identify a question that A gets a response for. I'd like you to try this on the demo website, not the test canvas.

     

    Once you've done that, test the same query on the demo website with user B, and let me know.

  • Hansi Profile Picture
    Hansi 6 on at

    Thanks @adilei , it tried that.

    In the demo website, both users get asked to login in with an auth code at the beginning of the session.

    User A gets proper answer based on the SharePoint Site. 
    User B does not get an answer.
    Any further ideas? Can I look at the authentication, that is actually granted during the login process?

     

  • adilei Profile Picture
    adilei on at

    Just making sure - user B can access the SharePoint site and files?

  • Hansi Profile Picture
    Hansi 6 on at

    Yes, I double checked. When user B logs into tenant of User A as guest, he can access the SharePoint Site and files.

  • adilei Profile Picture
    adilei on at

    Can you try raising a case with support? I suspect there's a product issue but not 100% sure

  • Suggested answer
    CU19070401-0 Profile Picture
    CU19070401-0 32 on at
    Have you enabled external sharing for your SharePoint Online? Here is a YouTube video how we can enable external sharing in recommended way: https://youtu.be/LHLidA_ZBFc?si=kVadfCgM-OSWandh

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities
Season of Giving Solutions is Here!
Explore Copilot Studio Forums, Blogs & Galleries!

Quick Links

Forum hierarchy changes are complete!

In our never-ending quest to improve we are simplifying the forum hierarchy…

Ajay Kumar Gannamaneni – Community Spotlight

We are honored to recognize Ajay Kumar Gannamaneni as our Community Spotlight for December…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Copilot Studio

#1
Michael E. Gernaey Profile Picture

Michael E. Gernaey 255 Super User 2025 Season 2

#2
Romain The Low-Code Bearded Bear Profile Picture

Romain The Low-Code... 205 Super User 2025 Season 2

#3
S-Venkadesh Profile Picture

S-Venkadesh 101 Moderator

Last 30 days Overall leaderboard

Featured topics

Announcing the "Microsoft Copilot Studio ❤️ MCP" lab
Welcome to the Copilot Studio forum!

Product updates

Microsoft Power Platform Community release plans