Create Bot without Developer Studio
Hi, We have a bit hard policies and users are not able to use the Developer Studio by they own to make new Bot: If you press [New Bot] you can give the name, but then [Create Bot] start hanging and does nothing. Previously on Azure had a user setting which block or allow users to register apps. Now I need our tenant admins or application administrators (?) to setup the bot(s) manually. Does anybody knows if the bot registration for Teams is possible to do without developer studio? The Developer Studio shows only your own Bots, so they cannot do that for me using Developer Studio.
SSO for a Python Teams Bot (M365 Agents SDK + FastAPI) — Single-Tenant, Multi-Tenant, and UAMI
We're building, a Teams bot (Python / FastAPI) that uses the M365 Agents SDK (microsoft-agents-hosting-fastapi + microsoft-agents-authentication-msal, v0.8.0) with a CloudAdapter and MsalConnectionManager. The bot is currently scoped to personal only and runs behind an Azure Bot resource. We are trying to implement SSO to authenticate users, so far we are not successful. The main blocker is that we failed to authenticate users from tenant different than the Azure Bot resource of our app. If anyone has successfully managed to authenticate users on Teams using a setup similar than ours please do share your experience. We would love to learn from your experience. So far this was our main source of documentation: https://learn.microsoft.com/en-us/microsoftteams/platform/bots/how-to/authentication/bot-sso-overview Many thanks
Teams - Camera and screen share issue
Hi, Since yesterday we have been having firm wide issues with camera usage and screen share in Teams calls. When user 1 calls user 2, user 1 can see user 2s camera and screen share. User 2 cannot see user 1s camera or screen share. It seems to be that the recipient cannot see camera feed or screen share, but the original caller can see incoming camera feeds and screen shares. We have tried fully reinstalling and nuking local cache, but no luck. Before we start looking a bit deeper, has any others had this at all. Many thanks guys
Teams Planner Duplication
Does anyone know if you can duplicate Microsoft Teams Planners for onboarding tasks? I am trying to create an easily replicable Teams Planner with links to files in Sharepoint folders, for example. I want to be able to copy this planner for each new hire and have a copy of all the files and planner tasks in the new copy. Any advice or expertise would be much appreciated!External sharing recommendations?
Our Teams environment is fairly restrictive when it comes to external sharing. We do not permit OneDrive external sharing, and Teams sharing is disabled except for guest accounts that IT creates. That has become a bit of a pain when we need to provide access to external entities that might need just a one-time access for files. Creating a guest account for a one-time/short-term use takes time and seems administratively cumbersome. Anyone have any suggestions for these sort of needs?
Group email addresses for Teams sometimes contain “+” or “/” characters
We are using Microsoft Teams in our organization. When creating multiple Teams with exactly the same team name, using ASCII alphanumeric characters only, we occasionally see that the automatically generated group email address contains unexpected characters such as “+” or “/”. I would like to know whether this behavior is expected or if it is specific to our environment. This issue seems to have been occurring since around August 2025. We manually create Teams using the Windows Teams client. For example, if we create several Teams with a simple name such as “example2026”, the corresponding group email addresses are generated in the following format: email address removed for privacy reasons However, in some cases, the XXXXXX portion includes characters like “+” or “/”. When creating around 50 Teams, this issue appears in a few of them. This causes two problems for us: A “+” character interferes with plus-addressing behavior. When a “/” is included, we cannot create events inside the Team. Has anyone else encountered this issue or knows why this happens? Any insights would be appreciated.
Introducing the Entra Helpdesk Portal: A Zero-Trust, Dockerized ITSM Interface for Tier 1 Support
Hello everyone, If you manage identity in Microsoft Entra ID at an enterprise scale, you know the struggle: delegating day-to-day operational tasks (like password resets, session revocations, and MFA management) to Tier 1 and Tier 2 support staff is inherently risky. The native Azure/Entra portal is incredibly powerful, but it’s complex and lacks mandatory ITSM enforcement. Giving a helpdesk technician the "Helpdesk Administrator" role grants them access to a portal where a single misclick can cause a major headache. To solve this, I’ve developed the Entra Helpdesk Portal (Community Edition)—an open-source, containerized application designed to act as an isolated "airlock" between your support team and your Entra ID tenant. Why This Adds Value to Your Tenant Instead of having technicians log into the Azure portal, they log into this clean, Material Design web interface. It leverages a backend Service Principal (using MSAL and the Graph API) to execute commands on their behalf. Strict Zero Trust: Logging in via Microsoft SSO isn’t enough. The app intercepts the token and checks the user’s UPN against a hardcoded ALLOWED_ADMINS whitelist in your Docker environment file. Mandatory ITSM Ticketing: You cannot enforce ticketing in the native Azure Portal. In this app, every write action prompts a modal requiring a valid ticket number (e.g., INC-123456). Local Audit Logging: All actions, along with the actor, timestamp, and ticket number, are written to an immutable local SQLite database (audit.db) inside the container volume. Performance: Heavy Graph API reads are cached in-memory with a Time-To-Live (TTL) and smart invalidation. Searching for users or loading Enterprise Apps takes milliseconds. What Can It Do? Identity Lifecycle: Create users, auto-generate secure 16-character passwords, revoke sign-in sessions, reset passwords, and delete specific MFA methods to force re-registration. Diagnostics: View a user's last 5 sign-in logs, translating Microsoft error codes into plain English. Group Management: Add/remove members to Security and M365 groups. App/SPN Management: Lazy-load raw requiredResourceAccess Graph API payloads to audit app permissions, and instantly rotate client secrets. Universal Restore: Paste the Object ID of any soft-deleted item into the Recycle Bin tab to instantly resurrect it. How Easy Is It to Setup? I wanted this to be universally deployable, so I compiled it as a multi-architecture Docker image (linux/amd64 and linux/arm64). It will run on a massive Windows Server or a simple Raspberry Pi. Setup takes less than 5 minutes: Create an App Registration in Entra ID and grant it the necessary Graph API Application Permissions (e.g., User.ReadWrite.All, AuditLog.Read.All). Create a docker-compose.yml file. Define your feature toggles. You can literally turn off features (like User Deletion) by setting an environment variable to false. version: '3.8' services: helpdesk-portal: image: jahmed22/entra-helpdesk:latest container_name: entra_helpdesk restart: unless-stopped ports: - "8000:8000" environment: # CORE IDENTITY - TENANT_ID=your_tenant_id_here - CLIENT_ID=your_client_id_here - CLIENT_SECRET=your_client_secret_here - BASE_URL=https://entradesk.jahmed.cloud - ALLOWED_ADMINS=email address removed for privacy reasons # CUSTOMIZATION & FEATURE FLAGS - APP_NAME=Entra Help Desk - ENABLE_PASSWORD_RESET=true - ENABLE_MFA_MANAGEMENT=true - ENABLE_USER_DELETION=false - ENABLE_GROUP_MANAGEMENT=true - ENABLE_APP_MANAGEMENT=true volumes: - entra_helpdesk_data:/app/static/uploads - entra_helpdesk_db:/app volumes: entra_helpdesk_data: entra_helpdesk_db: 4.Run docker compose up -d and you are done! I built this to give back to the community and help secure our Tier 1 operations. If you are interested in testing it out in your dev tenants or want to see the full architecture breakdown, you can read the complete documentation on my website here I’d love to hear your thoughts, feedback, or any feature requests you might have!
Student chat disabled?
Hi there, I’ve started testing and setting up Teams for my education customer. I’ve gotten reports that teachers have a “This chat has been disabled. You can’t send send a message , but can view past messages.” Message when going to message a student. I have tried re-assigning policies but nothing that I’ve tried has worked. Any resolutions? Help is greatly appreciated. Thanks, Jessie M. Hadaller EDIT: This issue only appears on the iPad app version of Teams. Version#:3.10.0
