Skip to content

Latest commit

 

History

History
55 lines (33 loc) · 2.91 KB

dlp-example-1.md

File metadata and controls

55 lines (33 loc) · 2.91 KB
title description keywords ms.date ms.topic author ms.author ms.custom ms.service ms.collection
Use DLP to block skills in chatbots
Block skills from being used in Power Virtual Agents chatbots.
PVA
10/07/2022
article
iaanw
iawilt
admin, dlp
power-virtual-agents
virtual-agent

Data loss prevention example 1 - Block skills in Power Virtual Agents chatbots (Preview)

[!INCLUDE Preview documentation notice]

Bot makers in your organization can extend their bots with skills. Skills can be a useful way of extending the functionality of your bots, however you may want to restrict their use to help prevent data exfiltration.

You can use the Skills with Power Virtual Agents connector in Power Platform data loss prevention (DLP) policies to stop bot makers from adding skills to their bot.

See the Configure data loss prevention for Power Virtual Agents chatbots topic for information about other DLP-related connectors.

Configure DLP to block skills in the Power Platform admin center

[!INCLUDE Preview documentation notice]

Add the connector

  1. Use the search box to find the Skills with Power Virtual Agents connector.

    :::image type="content" source="media/dlp-example-1/skills-connector.png" alt-text="Screenshot of the Skills with Power Virtual Agents connector.":::

  2. Select the connector's More actions menu (), and then select Block.

    :::image type="content" source="media/dlp-example-1/block-connector.png" alt-text="Screenshot of the Power Platform admin center showing the contextual menu for a connector available from the more menu icon.":::

  3. Select Next.

  4. Review your policy, then select Update policy to apply the DLP changes.

    :::image type="content" source="media/dlp-example-1/update-policy.png" alt-text="Screenshot of the review screen when creating a DLP policy ":::

Confirm policy enforcement in Power Virtual Agents

You can confirm that this connector is being used in the DLP policy from the Power Virtual Agents web app.

First, open your bot from the environment where the DLP policy is applied, and then try to add a skill to the bot.

If the policy is enforced, you'll see an error in the Add a skill pane. The error says "Skill not allowed by data loss prevention policy" and suggests you contact an admin to add the skill to the allowlist. The Skill manifest URL field will also be highlighted with the message "This skill couldn't be validated. Review details and try again".

:::image type="content" source="media/dlp-example-1/add-skill-error.png" alt-text="Screenshot of the Add a skill pane in Power Virtual Agents showing the errors that occur if skills are prohibited by DLP policy.":::

[!INCLUDEfooter-include]