Notifications
Announcements
Hi all,
as stated here "SSO is only supported on the live website publication channel."
Does exist a roadmap for the SSO integration in the other channels, especially in Teams?
For when we can expect new releases?
Thanks,
Alessandro.
Hi @Galasso ,
We don't have dates for this release, but the Microsoft team is working on it to available as soon as possible.
You can follow the new releases here: https://docs.microsoft.com/en-us/power-platform-release-plan/2020wave2/power-virtual-agents/planned-features
Thanks for the answer Renato. I was missing the plan page.
Hi @Galasso
Now it's available to use SSO with Microsoft Teams in Public You can now configure your bots to automatically use Teams’ authentication, so their end users don’t have to sign-in when chatting with a PVA bot in the Teams channel, streamlining the user’s experience.
Power Virtual Agents support for Teams channel Single Sign-on is available in Public Preview | Microsoft Power Virtual Agents
I see that on 01/12/2021 there has been an announcement that now Teams SSO is available without having the user to sign in again. I do have a question regarding this - If I want the bot to be available in both web and teams channel then I believe I need to still setup manual "Generic oauth2" and I cannot use "teams only". If this is right then I see that it is prompting for login in teams every time I restart Teams. Is there any other change needed in AAD app registration along with this? I certainly do not want the login window to show up in teams
I was able to get this addressed with the generic oauth and updating the token exchange URI. I am now using the same oauth app to connect to sharepoint online webpage as well as teams integration. It works seamlessly.
So you are don't getting that pop up anymore, @Anonymous? The OTP from https://token.botframework.com/api/oauth/signin?signin=blahblahblahcode_challenge?
That is correct? I don't need or want that OTP to show up ever lol. Trying to follow this tutorial but I am struggling: Configure single sign-on for the Power Virtual Agents app in Teams - Power Virtual Agents | Microsoft Docs? Let me know!
-n
That is right @nk1ng . if the request for the bot is authenticated properly using MSAL, the bot should bot show this prompt. This is due to the fact that bot does not recognize the user.
Read through the fix that I shared here - Solved: Re: How to configure SSO on a intranet page (Share... - Power Platform Community (microsoft.com)
So you have to publish a custom canvas on the same network? Not using the https://token.botframework.com/api/oauth/ whatever? I need to fix this if that is true, @Anonymous?
@Anonymous, I mean you have to publish an index.html with MSAL.js somewhere for SSO (in Teams)? Do you need to have that externally and access to the internet (and same domain that is hosting the bot)? So prolly if you want to use SSO on our phones you have do, huh? Because, we don't have a custom HTML websites set up for this yet, just using the default endpoints trying to get everything up and running but the OTP will show up until we have a custom logon card? Still trying to understand everything..
Thank you for your help guys, also excuse my English, I had a stroke awhile back and my grammar is still struggling. Let me know if you need any more info on my setup :).
The page where your bot is going to be hosted need to be registered in the oauth so that MSAL can redirect back to this page. @nk1ng I got all your questions. Hope you get better soon
Under review
Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.
In our never-ending quest to improve we are simplifying the forum hierarchy…
We are honored to recognize Ajay Kumar Gannamaneni as our Community Spotlight for December…
These are the community rock stars!
Stay up to date on forum activity by subscribing.
Michael E. Gernaey 255 Super User 2025 Season 2
Romain The Low-Code... 205 Super User 2025 Season 2
S-Venkadesh 101 Moderator
