Connecting Pharos to MS Teams
Pharos utilizes OAuth protocol to communicate with you MS Teams instance. To establish a connection, navigate to Integrations -> Teams in Pharos Admin.
If you haven't already, enable the Integration by toggling the switch on the right hand side.
At this point, all you need to do is hit the Login to Teams button to get started.
Allowing Access
Once a login is initiated, you will be redirected to a login screen to access your Microsoft Teams account. If you already have a logged in session, the login prompt will be skipped and you'll be redirected to one of the pages listed below.
Note: Depending on how your Microsoft Account is configured and managed, your prompts may look different. We will attempt to cover the basic flows spanning most possibilities when it comes to granting access.
Scenario 1: immediate authorization
This is an unlikely scenario as most organizations restrict 3rd party OAuth access without any kind of prompting. However, it is possible if you have full admin rights within your Microsoft Active Directory setup. In this scenario you will simply redirect back to Pharos Admin after clicking the Login to Teams button. Congratulations, your Teams account is now connected to Pharos!
Scenario 2: prompt with ability to consent
In this scenario, you will be presented with an OAuth prompt similar to the one below:
It is possible that your account may not have the necessary permissions to consent on behalf of the organization, in which case the consent checkbox may not be available.
At this step, all that's needed is to press the blue Accept button. Following that, you will be redirected back to Pharos Admin thus concluding the OAuth flow.
Scenario 3: approval required
This is the most likely scenario for larger organizations. It will require assistance from your IT department, or whoever is in charge of managing your Teams and Active Directory (Entra). Here's an example of the prompt you might see:
At this stage, the only way to move forward is to enter a justification reason in the field at the bottom and hit the Request approval button. This action will send a notification to your Teams administrator.
At this point you will need to wait for your administrator's approval before proceeding further. You can simply close the browser window and re-try the login flow from Pharos Admin once your request has been approved. Once approved and upon re-attempted Teams login from Pharos, your experience should follow Scenario 1 mentioned above.
Active Directory Approval Flow
To assist your administrator in approving your request to authorize the Pharos.ai application for use with Microsoft Teams, feel free to share with them the following instructions.
Within your Microsoft Active Directory (Entra) admin center:
- Navigate to Applications -> Enterprise applications
- Under the Activity section, locate and select Admin consent requests
- From the right hand side section, select My Pending and click on the Pharos.ai entry.
Once Pharos.ai is selected, a sidebar will appear from the right hand side. Choose the Review permissions and consent option.
You will be presented with a prompt similar to the one below. Simply Press Accept to provide consent.
What Exactly am I Consenting To?
As an Active Directory (Entra) administrator, you might be wondering what the app does and why it needs the permissions that are listed. As an Active Directory (Entra) administrator, you might be wondering what the app does and why it needs the permissions that are listed. Here's a list of all the permissions Pharos.ai will request along with justification for access. All permissions listed below are delegated.
Permission |
Reason |
Sign in and read user profile
|
Required to sign in on behalf of a user. Pharos would like to receive users' responses in channels and perform actions on Logs and Issues in Salesforce in the future |
Read and write user chat messages
|
Pharos would like to receive users' responses in channels and perform actions on Logs and Issues in Salesforce in the future |
Read all groups | Pharos would like to send channel messages for error and monitoring notifications |
Send channel messages | Pharos would like to send channel messages for error and monitoring notifications |
Read group memberships | Pharos would like the ability to view users group memberships |
Read the names and descriptions of channels | Pharos presents a dropdown for users to select a channel for notifications |
Send channel messages | Pharos allows channel messages for error and monitoring notifications |
Read the names, descriptions, and settings of channels | Pharos presents a dropdown for users to select a channel for notifications |
Read and write user chat messages | Pharos would like to send direct messages, receive users' responses in channels and perform actions on Logs and Issues in Salesforce in the future |
Maintain access to data you have given it access to | Pharos will maintain access to Teams and utilize refresh tokens to ensure the session does not expire. |
Sign users in | Pharos needs to login on behalf of a user |
Comments
0 comments
Article is closed for comments.