web
You’re offline. This is a read only version of the page.
close
Skip to main content
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Copilot Studio - Copilot Studio pre-built Agent... / Is it allowed to perfo...
Copilot Studio - Copilot Studio pre-built Agent...
Suggested answer

Is it allowed to perform a penetration test on a chatbot built with Copilot Studio?

(1) ShareShare
ReportReport
Posted on by 浩川-08100749-0 2

Dear Microsoft team,

 

I would like to confirm whether it is permissible to conduct a penetration test (vulnerability assessment) on a chatbot built using Copilot Studio.

 

The chatbot is embedded into a portal site that is hosted on a third-party SaaS platform. The agent secrets are protected via a custom-developed API, which is deployed on Azure Web Apps.

 

Given this setup, is it acceptable to perform a standard enterprise-level penetration test on the chatbot? Are there any procedures or approvals required before doing so?

 

Additionally, I would appreciate any guidance on whether such a vulnerability assessment is recommended or necessary for this type of deployment.

 

Thank you in advance for your support.

 

Best regards,

I have the same question (0)
  • Romain The Low-Code Bearded Bear Profile Picture
    Romain The Low-Code... 1,155 Super User 2025 Season 2 on at
    Is it allowed to perform a penetration test on a chatbot built with Copilot Studio?
    hello :)
     
    Interesting use case, but, 
    Here is a public community forum, it's not the official Microsoft support.
     
    If you want to make this kind of test you have to contact your company TAM (technical account manager) or if you don't have one, contact the Support from you support case forms inside of you'r M365 tenant :)
     
    Some time : some "Microsoft people" came here but i doubt they are allow to tell in a public forum this kind of answer :)
     
    Hope this help you :)
  • Suggested answer
    Romain The Low-Code Bearded Bear Profile Picture
    Romain The Low-Code... 1,155 Super User 2025 Season 2 on at
    Is it allowed to perform a penetration test on a chatbot built with Copilot Studio?
    hello :)
     
    Interesting use case, but, 
    Here is a public community forum, it's not the official Microsoft support.
     
    If you want to make this kind of test you have to contact your company TAM (technical account manager) or if you don't have one, contact the Support from you support case forms inside of you'r M365 tenant :)
     
    Some time : some "Microsoft people" came here but i doubt they are allow to tell in a public forum this kind of answer :)
     
    Hope this help you :)

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities
Join experts in person to explore low code and AI agents at the Power Platform Community Conference sponsored by Microsoft

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Tom Macfarlan – Community Spotlight

We are honored to recognize Tom Macfarlan as our Community Spotlight for October…

Congratulations to the September Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Copilot Studio

#1
Romain The Low-Code Bearded Bear Profile Picture

Romain The Low-Code... 523 Super User 2025 Season 2

#2
Michael E. Gernaey Profile Picture

Michael E. Gernaey 378 Super User 2025 Season 2

#3
DAnny3211 Profile Picture

DAnny3211 132

Last 30 days Overall leaderboard

Featured topics

Welcome to the Copilot Studio pre-built Agents/Templates

Product updates

Microsoft Power Platform Community release plans