AI agents should not use author (maker) authentication for connections
Descriptionโ
Checks all Copilot Studio agents for connector tools that use author (maker) authentication instead of end-user authentication. When a connection uses author authentication, the agent accesses external services (SharePoint, SQL, etc.) using the bot maker's stored credentials rather than requiring the end user to authenticate. This creates a privilege escalation risk โ the agent operates with the maker's permissions regardless of who is chatting with it.
How to fixโ
In Copilot Studio, review the agent's tools and change each connector's authentication setting from Agent author authentication to User authentication. This ensures the agent accesses external services using the chatting user's own credentials and permission scope.
Learn more: Configure user authentication in Copilot Studio
Prerequisitesโ
This test evaluates Copilot Studio agent configurations via the Dataverse API.
Connect-Maester -Service Graph,Dataverse