New Microsoft 365 Admin Feature Empowers Administrators to Manage Link Creation Policies

Microsoft is set to roll out a significant new administrative control feature in mid-September 2025, enabling IT administrators to manage organisation-wide sharing permissions for user-built Copilot agents. This feature directly addresses the increasing enterprise concerns surrounding governance and security in the deployment of AI agents across organisations. The new tenant-level feature will be accessible through the Microsoft 365 Admin Centre, allowing administrators to specify which users or groups can create organisation-wide sharing links for agents developed using the Microsoft Copilot Studio Agent Builder. By default, the current sharing behaviour remains unchanged, ensuring continuity for organisations that do not require immediate policy modifications. Administrators will have the flexibility to configure three distinct permission levels: allowing all users to create sharing links, restricting all users from this capability, or implementing role-based access control (RBAC) for specific users and security groups.

The rollout timeline indicates that General Availability will begin worldwide in mid-September 2025, with complete deployment expected by late September 2025. This phased approach aims to minimise disruption to existing workflows while providing organisations with sufficient time to assess their current agent sharing policies and implement appropriate controls. From a technical perspective, this feature addresses critical enterprise concerns regarding data governance and information security in AI-powered collaboration tools. Organisations can now establish comprehensive policies to prevent the unauthorised distribution of proprietary AI agents while maintaining operational flexibility for approved users. The control mechanism integrates seamlessly with existing Microsoft 365 security frameworks, leveraging established Azure Active Directory identity management systems. Microsoft recommends that organisations proactively review their existing sharing policies and update settings according to their specific governance requirements. 

Categories: Administrative Controls, Governance and Security, AI Agent Management 

Tags: Administrative Control, Copilot Agents, Sharing Permissions, Governance, Security, Microsoft 365, Role-Based Access Control, Data Access, Compliance, AI Management