Microsoft has unveiled a new administrative policy for Teams that empowers organizations with greater oversight and control over external bots joining their meetings. This initiative, announced on Tuesday, is designed to enhance security and privacy as the use of AI meeting tools becomes more prevalent, especially in scenarios involving sensitive data.
Enhanced Control Over External Bots
The new Teams policy allows organizations to assign the ‘Manage external bots and their access to meetings’ feature to individual users or specific groups directly from the Teams Admin Center. This measure ensures that only authorized participants gain access to meetings, addressing potential security concerns associated with unauthorized AI bots.
By default, Teams now identifies bots and requires organizers to confirm their participation before they can join a meeting. Administrators have the flexibility to disable this feature if desired, but the default setting prioritizes security by detecting bots and seeking explicit organizer approval.
Improved Bot Detection and Identification
Microsoft has enhanced Teams’ capability to differentiate between bots and human participants, leveraging behavioral and infrastructure signals. When the detection feature is enabled, potential bots are placed in a meeting lobby, clearly marked for the organizer to review before admission. This process ensures that even in meetings where participants are allowed to bypass the lobby, bot approval is mandatory.
Additionally, independent software vendors (ISVs) can now register their bots with Microsoft and include a self-identification marker in join requests, simplifying the process of recognizing known bots. This visual distinction helps organizers easily identify and manage bot participation in meetings.
Streamlined Admission Process
To minimize the risk of mistakenly admitting unauthorized bots, Teams does not provide a one-click Admit option for detected bots. Organizers must confirm their admission, and warnings are issued when the ‘Admit all’ option includes bots. This comprehensive approach marks a significant improvement over the previous CAPTCHA verification system, which Microsoft is now phasing out.
In light of these advancements, Microsoft continues to fortify Teams against potential threats, ensuring a secure environment for digital collaboration. With these new controls, organizations can confidently manage bot interactions in their meetings, safeguarding against unauthorized access.
