Microsoft Teams Setup¶
|Configuration Setting||Mandatory?||Default||Available on Admin Config|
- Login to https://portal.azure.com and select "Create a Resource".
- Use the search box to locate "Azure Bot", and select "Create".
- Configure the bot handle, subscription, resource group, location, data residency, pricing tier, and Type of App. For "Type of App", select "Multi Tenant".
- Be sure to select the "F0" (free) pricing tier if desired. Otherwise the default is set to the "S1" paid tier.
- Select “Review + create”, then select "Create" and wait for the "Deployment succeeded" pop-up to appear in your browser.
- Click "Go to resource".
- In the sidebar to the left, select "Channels" and select the "Microsoft Teams" icon. All of the default settings here are fine, so just click "Save".
- In the sidebar to the left under “Settings”, select "Configuration".
- For the "Messaging endpoint", enter your service URL (
- On the same page, take note of the "Microsoft App ID" that is displayed. This will be needed at a later step.
- Click the "Manage" link next to the "Microsoft App ID" from step 10.
- Click "Certificates & secrets" on the left side menu, under section "Manage".
- Click "New client secret" to create a new secret. Name it something descriptive, configure the expiration setting as necessary, and click Add. Make note of this secret as it will be needed later, and cannot be revealed again once you navigate away from this window.
MS Teams Developer Portal¶
- To deploy the bot to your team, log in to the Microsoft Developer Portal and select “Apps” from the left-hand menu.
- Select "Import app" and upload the Nautobot ChatOps_ms_teams.zip file. It can be found from this directory or downloaded from GitHub here. NOTE: If you get an error stating “App package has errors”, you can ignore this and click on “Import” to complete the import.
- Under section “Configure”, select “Basic Information”. Scroll to the bottom. Under “Application (client) ID, type in the value that you took note of above in Azure step 10.
- Under section “Configure”, select “App features”. Select the triple dots (...) next to the “Bot” tile and select “Edit”.
- On the Bot Edit page, under section “Identify your bot,” select “Enter a bot ID” and type in the same App ID value used above in step 4. Click Save.
- Under section “Publish”, select “Publish to org.” Click the “Publish your app” button. This will need to be approved by your organization’s MS Teams administrator.
MS Teams Client¶
- In the Microsoft Teams client, select “Apps” from the sidebar to the left.
- Select “Built for your org.”
- Select the tile for the new Nautobot app. Click the blue “Add” button.
- Proceed to the Install Guide section.
microsoft_app_id- This is the "Microsoft App ID" from Azure step 10.
microsoft_app_password- This is the "Client Secret" from Azure step 13.
Handling ChatOps Behind a Firewall¶
A common security concern with ChatOps is how to protect your network/application from malicious activity. In order to do so proper firewall policy should be implemented. Through trials, researching, and testing in multiple environments, allowing inbound connections from
184.108.40.206/14 has proven to be successful. Although Microsoft doesn't publish all their ranges this range was found in a Microsoft Blog Post and has yielded success in locked down environments. Additionally Microsoft Posted their IP Address and DNS ranges.
Reference the Setting Up Nautobot ChatOps With MSTeams Fall 2022 blog post for more details and additional screenshots.
General Chat Setup Instructions¶
See admin_install instructions here for general plugin setup instructions.