AI agents should require user authentication
Descriptionโ
Checks all Copilot Studio agents for weak or missing authentication. Flags agents with no authentication configured, as well as agents where authentication is configured but "Require users to sign in" is not enabled.
How to fixโ
- In Copilot Studio, open the agent settings and configure authentication to use Authenticate with Microsoft or Authenticate manually.
- Enable Require users to sign in to ensure every user authenticates before interacting with the agent.
Learn more: Configure user authentication in Copilot Studio
Prerequisitesโ
This test evaluates Copilot Studio agent configurations via the Dataverse API.
Connect-Maester -Service Graph,Dataverse