Skip to main content

Compliance Archiving for Microsoft Teams

Hiro
Updated

Overview

Nuclei provides Microsoft customers with the ability to automatically export and archive all chat communications occurring within Microsoft Teams, including:  

  • Chat Messages (One-to-one)
  • Chat Messages (Group)
  • Chat Messages (Meeting)
  • Chat Messages (Channel)
  • SMS Messages (One-to-one)
  • Deleted Messages
  • Edited Messages
  • Message Attachments (Direct)
  • Message Attachments (OneDrive)
  • Meeting Transcripts
  • Meeting Recordings (convenience recording only) 

As a first step, the "Nuclei Capture" archiving app must be authorized for your Microsoft Azure organization. Once complete, Nuclei will automatically import your organizations content and related activity. Content can be retained with Nuclei, or exported for review and retention in your existing compliance archive. 

 

Prerequisites

  • Microsoft Graph API
  • Microsoft 365

A Microsoft 365 E5 license is not required for archival related use cases. An E5 license may be required for security and insider threat related use cases. 

For more details, see the API Terms for Security & Compliance Applications of the product terms for Microsoft Azure services. 

Meetings Artifacts (Transcripts and Recordings)

To capture meeting artifacts, you’ll need to create an Application Access Policy using PowerShell. Follow the steps below to configure it properly.

- Open PowerShell as an Administrator 

Install Microsoft Teams PowerShell Module 

Install-Module -Name PowerShellGet -Force -AllowClobber
Install-Module -Name MicrosoftTeams -Force -AllowClobber

Connect to Microsoft Teams 

Connect-MicrosoftTeams

Create Application Access Policy and Assign to Group 

New-CsApplicationAccessPolicy -Identity "NucleiAppPolicy" `
-AppIds "provided by Nuclei" ` 
-Description "Capture Meeting Artifacts"
Grant-CsApplicationAccessPolicy -PolicyName NucleiAppPolicy -Group "Group Object ID"

Scope

Messages

The following types of metadata are supported for each chat message:

  • Message ID
  • Chat ID
  • Chat Metadata
  • Channel ID
  • Channel Metadata
  • Message Type
  • Created Date Time
  • Last Modified Date Time
  • Content
  • Subject
  • Summary

The following additional types of metadata are also supported for each chat participant:

  • User ID
  • Display name
  • Email
  • Tenant ID
  • UPN
  • Phone Numbers

 

Getting Setup

Nuclei

To enable archiving of Microsoft Teams chat messages:

  1. Login to https://app.nuclei.ai 
  2. Select "Configuration" > "Sources"
  3. Select "New"
  4. Select "Source Type", then select "Microsoft Teams (Chat)"
  5. Add a "Description" to the feed
  6. Enter your "Microsoft Tenant ID"
  7. Select "Create Source"
  8. Select "Create Authorization", and complete the OAuth approval workflow.

Uninstallation 

To disable archiving:

  1. Disable "Capture Enabled" in the Nuclei source configuration. 

 

Permissions Required

The following application permissions are required during app authorization: 

  • AppCatalog.Read.All
  • CallRecords.Read.All
  • ChannelMember.Read.All
  • ChannelMessage.Read.All
  • Chat.Read.All
  • Files.Read.All
  • Group.Read.All
  • GroupMember.Read.All
  • OnlineMeetingRecording.Read.All
  • OnlineMeetings.Read.All
  • OnlineMeetingTranscript.Read.All
  • Team.ReadBasic.All
  • User.Read.All
  • Sites.Read.All

Tenant-wide admin consent is required for each scope. For an overview of Microsoft's admin consent workflow, please reference the Microsoft Entra ID Enterprise Apps documentation:

Microsoft - Entra ID - Enterprise Apps - Admin Consent Workflow Overview

 

Additional Resources

Export Destinations

 

Related Solutions

Compliance Recording for Microsoft Teams

Compliance Archiving for Microsoft Dynamics

 

More Information

For more information on Compliance Archiving for Microsoft Teams and for a demonstration of related capabilities, please contact Nuclei's sales team at hello@nuclei.ai

Related articles

Comments

0 comments

Article is closed for comments.