Did you know: Resource-specific consent (RSC) for Microsoft Teams makes it possible for team owners to consent to apps accessing their team data without explicit admin approval

Did you know: Resource-specific consent (RSC) for Microsoft Teams makes it possible for team owners to consent to apps accessing their team data without explicit admin approval. Admins may choose which team owners can consent.

Key points

  • Microsoft 365 Roadmap ID 56605
  • Timing: mid-August; complete in mid-September
  • Roll-out: tenant level
  • Control type: admin control
  • Action: review and assess

How this will affect your organization

Apps provide out-of-the-box or custom tools for your organization to get more out of Teams.

Previously, any app that accessed Microsoft Graph APIs for Microsoft Teams needed global admin consent. Most other Graph APIs support user consent, i.e., consent by someone other than an admin, which allows apps using those APIs to be run without admin consent.

With RSC, you no longer need to grant an app tenant-wide approval. Instead, you can give a team owner the ability to install an RSC app that will have access to only that team’s Teams Graph API. RSC allows apps to create, rename and delete channels; read channel messages; create tabs; and read team membership and settings.
RSC permissions

There is no change in how you track apps that have been installed in your tenant. You can continue to block a specific application from being installed in your tenant.

What you need to do to prepare

From the Microsoft Teams admin center, manage RSC through the setting, “Users can consent to apps accessing company data for the groups they own.”

  • By default the RSC setting mirrors the setting, “Users can consent to apps accessing company data on their behalf.”
  • If users can consent to accessing company data, they can also consent to accessing company data in groups they own.
  • If a user cannot consent to apps accessing company data for the groups they own, they cannot install RSC apps.
  • If you do not want your Team owners to be able to use RSC approvals for apps, you can disable this feature.
  • You may also limit the ability to consent to RSC apps to specific team owners, rather than all team owners.

In this example, all group owners are allowed to consent to apps accessing their group data.

Apps that have already been installed are not affected by this policy.

If you’d like to schedule a free one hour consultation on Microsoft 365 roadmap planning with someone from our Microsoft 365 roadmap services team please contact us

Share:

Facebook
Twitter
LinkedIn

Contact Us

On Key

More Posts

Mastering Azure AD Connect - A Comprehensive Guide by WME
Active Directory

Mastering Azure AD Connect – A Comprehensive Guide

Modern businesses are fast moving toward cloud-based infrastructure. In fact, cloud-based business is not just a trend anymore but a strategic necessity. Microsoft’s Azure Active Directory (Azure AD) has become a frontrunner in this domain. It

Read More »
Security Best Practices in SharePoint
Office 365

Security Best Practices in SharePoint

Microsoft SharePoint is an online collaboration platform that integrates with Microsoft Office. You can use it to store, organize, share, and access information online. SharePoint enables collaboration and content management and ultimately allows your teams to

Read More »
The Ultimate Guide to Microsoft Intune - Article by WME
Active Directory

The Ultimate Guide to Microsoft Intune

The corporate world is evolving fast. And with that, mobile devices are spreading everywhere. As we venture into the year 2024, they have already claimed a substantial 55% share of the total corporate device ecosystem. You

Read More »
Protecting Microsoft 365 from on-Premises Attacks
Cloud Security

How to Protect Microsoft 365 from On-Premises Attacks?

Microsoft 365 is diverse enough to enrich the capabilities of many types of private businesses. It complements users, applications, networks, devices, and whatnot. However, Microsoft 365 cybersecurity is often compromised and there are countless ways that

Read More »
Be assured of everything

Get WME Services

Stay ahead of the competition with our Professional IT offerings.