Your interactive guide to setting up the web client via Direct Connect
Project Overview> I developed a way to use copilot studio agent using direct connect. This guide outlines how to configure a Microsoft Copilot Studio agent for secure web integration using Direct Connect, Azure Bot Services, and Power Platform. The web client uses a secure Express.js backend to handle credential exchange, ensuring the **Client Secret** is never exposed on the frontend. If anyone is interested, I can provide the source code. Prerequisites You must have administrative access to the following resources to complete the setup. 💻 Local Development Node.js (v12+) and Git installed. 🤖 Copilot Studio Agent Agent created and imported to the Production Environment. 🛡️ Azure Access Access to Azure Subscription 1 and Microsoft Entra ID for App Registration.Introducing CoPilot Vision
CoPilot Vision has been introduced to view a page, and provide responses and information based on the content of the page You can read up on the article here - https://support.microsoft.com/en-au/topic/using-copilot-vision-with-microsoft-copilot-3c67686f-fa97-40f6-8a3e-0e45265d425f I did a test with different web pages and it gave an overview. There are also different kinds of voice settings. You can try this out, and I'd love to get your feedback on the use of CoPilot Vision.
We need help solving a critical integration gap between Microsoft 365 Copilot and Salesforce.
The challenge: We want Copilot to access Salesforce data (including custom objects) while honoring each user’s Salesforce permissions—profiles, field‑level security, and sharing rules. Current out‑of‑box connectors don’t support this. Using an all‑access integration account is a compliance risk. Why it matters: Copilot is only valuable if answers are both accurate and secure. If a user sees data in Copilot they shouldn’t in Salesforce, that’s a governance nightmare. What we’re looking for: ✅ Support for custom objects & fields ✅ Enforcement of Salesforce profiles, FLS, and sharing ✅ Delegated user authentication (Entra ID ↔ Salesforce) ✅ Works with Microsoft 365 Copilot grounding Questions: - Has anyone implemented this successfully? - Is there a Microsoft or Salesforce roadmap for delegated auth in Copilot connectors? - Do you know a partner or expert who can build this securely? Let’s make Copilot + Salesforce both powerful and compliant.Microsoft Use of Anthropic AI Models Creates Concerns for Tenants
On September 24, Microsoft announced that Anthrophic LLMs could be used with the Copilot Researcher agent and to build agents with Copilot Studio. Although it’s great to enable choice so that customers can choose the AI model they prefer, questions about data security, lack of support for compliance solutions, and adherence to standards like the EU data boundary will concern Microsoft 365 tenants. https://office365itpros.com/2025/09/26/anthrophic-copilot/Agent not visible in M365 Copilot
I created an agent in M365, including its name, description, instructions, and required actions. The agent is properly tested in Copilot Studio and published, but it is not visible in the M365 Copilot agent list. Interestingly, one agent is visible while the other is not, and I am unable to determine the issue.
Copilot Agent in SharePoint App
I created a new Copilot agent (using GPT-4) that refers to knowledge from SharePoint sites and published to SharePoint site. I configured 'Authenticate with Microsoft' under 'Security'. Approved the agent from SharePoint site and set as 'default' for the site. It works as expected when launched from a SharePoint web page. However, when the agent is launched from SharePoint app, it says, 'connect to your Microsoft account' and if I click Sign in button, it throws an error 'Cannot connect'. Then the agent fails. What am I missing here?
Deleting AI developed meeting recaps
Hello, We have recently begun utilizing the meeting transcript and AI generated transcript functionality for our meetings. However, we can discuss potentially sensitive information on our calls and so we would like to understand how to delete the AI notes from the recap once we have had adequate time to digest and review. I can see how to delete the full transcript, but I do not see an option to delete the AI meeting notes. And we need to confirm that once deleted they are cleared for good and cannot be deemed discoverable. Thank you for help that anyone can provide.Outlook + OneDrive = Silent Syncing? A Serious Privacy Concern
🚨 Hey folks, I stumbled upon something that left me stunned — and frankly, furious. I was using classic Outlook (not the new web-based version) on my Windows machine. After what I assume was a silent update, email accounts I had previously configured on my Mac (also using Outlook) mysteriously appeared on my Windows device. I had deleted all profiles and started fresh, yet my IMAP and Pop accounts reappeared. Yes, you read that right: accounts from my Mac showed up on my Windows PC without my input. Digging deeper, I realized OneDrive had been quietly syncing my mail data — including accounts linked to cPanel. OneDrive was active but wouldn’t launch properly. Turns out, it was busy harvesting my account configurations behind the scenes. The moment I uninstalled OneDrive, the syncing stopped. Outlook no longer recognized any of my accounts. That’s when it hit me: my data had been synced somewhere, without my consent. 🔍 Here’s where I looked: • Outlook Data Files (.pst/.ost) — empty • Credential Manager — nothing • Registry — traces of profiles, no accounts • Microsoft Account Sync Settings — disabled I also found a new folder under Account Settings > Data Files linked to OneDrive. The path couldn’t be deleted or changed. Conclusion: Classic Outlook appears to sync account data via OneDrive or another Microsoft service — without asking the user. That’s not just sneaky. It’s a serious security and privacy issue. 💣 Message to Microsoft: If you're charging for software, don’t sneak behind users’ backs. If you're going to sync data, ask first. I paid for Outlook — and got surveillance. I’m still shocked this is even possible. If anyone else has experienced something similar, speak up. This needs visibility.
