Skip to main content
🦉
Message CenterMicrosoft 365 Updates
HomePermissionsTenant FinderPortfolio
🦉
M365 Message Centerby Cengiz YILMAZ

Track the latest updates, features, and announcements for Microsoft 365 services. Comprehensive archive of service updates and important changes.

Quick Links

HomePermissionsTenant FinderPortfolio

Connect

© 2026 M365 Message Center. Created with ❤️ by Cengiz YILMAZ

Data sourced from Microsoft 365 Message Center • Not affiliated with Microsoft

  1. Home
  2. /
  3. MC1041454

AI Admin role has permissions to manage Copilot agents

Informational

Message ID

MC1041454
View in Admin Center

Services

Microsoft 365 suite

Summary

AI Admin role now has permissions to manage Copilot agents, previously requiring Global Admin privileges. This change will roll out in late March 2025. AI Admins can view, publish, reject, block, and update agents but cannot consent for permissions. They should familiarize themselves with the integrated app page.

Details

Previously, an admin logged into the M365 Admin center must have the Global Admin privileges if they want to manage and perform admin tasks related to managing agents in the Integrated Apps Page. With this change the AI Admin Role can manage Agents ensuring they comply with organizational policies and security standards.

When this will happen:

General Availability (Worldwide): We will begin rolling out in late March 2025 and expect to complete by late March 2025.

How this will affect your organization:

AI Admins can now view agents submitted to the admin for approval under Requested Apps tab in the integrated apps page. From here they can choose to either publish it or reject it. When an agent is updated and sent to admin for approval, it also shows up under the requested apps tab with status as “Update Pending”. From here the admin can choose to either accept the update or reject it.

Following are the actions AI Admin Role can do -

  • View 1st party, 3rd party, Line of Business agents.
  • Publish/Reject
  • Make agents available to all/specific/none users.
  • Block/Unblock agents.
  • Update tenant level settings for 1st party, 3rd party, Line of Business agents.
  • Remove agents

Following are the actions AI Admin Role cannot do -

  • Consent for permissions. This ensures that only authorized roles (Global Admin) can provide the necessary consent. This restriction is in place to maintain security protocols and compliance standards, minimizing the risk of accidental misconfigurations and cybersecurity threats.

What you need to do to prepare:

AI Admin Role can familiarize themselves with the integrated app page and work alongside the Global admins to manage agents which are published to the tenant by makers in the organization.

Timeline

📅
Published
Mar 26, 2025
Message published to Message Center
✏️
Updated
Apr 8, 2025
Message content updated
🏁
End Date
May 5, 2025
Message timeline ends

Tags

#New feature#User impact#Admin impact

Category

📖Stay Informed

Related Messages

Similar updates

MC1050194

Microsoft Purview: Protected Microsoft 365 files will have context previews in email notifications

Apr 7, 2025
MC1047246

Microsoft 365 Copilot and Microsoft 365 Copilot Chat: New Microsoft Graph connectors for the chat experience and more

Apr 3, 2025
MC1046167

Microsoft Viva: Expanded AI admin role to manage Microsoft Copilot Dashboard settings

Apr 2, 2025
MC1046161

Microsoft Purview | Data Loss Prevention: New inline protection controls for AI apps in Microsoft Edge for Business

Apr 2, 2025
MC1045278

Microsoft Purview | Data Loss Prevention: New data protection in Microsoft Edge for Business on unmanaged devices

Apr 1, 2025