Microsoft will empower IT administrators to automatically block unauthorized AI notetakers from Microsoft Teams meetings starting in August 2026. According to the Microsoft 365 roadmap (ID 566201), the update allows organizations to enforce a blanket “no” policy, preventing third-party bots from even reaching the meeting lobby, regardless of whether a meeting organizer has manually approved them.
How Microsoft is changing meeting security
The current standard for managing AI intruders relies on the meeting organizer. Earlier this year, Microsoft introduced external bot detection under Message Center notice MC1251206. This feature labels third-party bots as “Unverified” and places them in a “Suspected threats” area of the lobby. Organizers must then make a manual decision to admit these bots.
The upcoming change removes this human-in-the-loop requirement. By using the ExternalBotAccessMode attribute in the Teams Admin Center or via the Set-CsTeamsMeetingPolicy PowerShell cmdlet, administrators can select a “BlockDetectedBots” setting. Once enabled, these bots are turned away at the door, bypassing the need for an organizer to issue a manual approval.
Why the shift toward native AI matters
This move is part of a broader industry trend to integrate native AI tools directly into collaboration platforms. By making third-party bots harder to use, Microsoft creates a stronger incentive for users to adopt its own native tools, such as Microsoft 365 Copilot.

Irwin Lazar, principal analyst at Metrigy, notes that this strategy serves a dual purpose. According to Lazar, providing native capabilities at no additional charge lowers the total cost of ownership for enterprises. It also reduces the necessity for companies to procure and manage standalone transcription services like Otter or Fireflies.
Limitations of automatic bot blocking
While the new policy provides a stronger defense, it is not a perfect solution. Microsoft has acknowledged that some bots are designed to mimic human participants and can occasionally bypass detection signals. In instances where the system misidentifies a human attendee as a bot, organizers must manually admit the person and label them as “not a bot.”
Furthermore, this policy strictly targets external third-party bots. It does not affect Microsoft 365 Copilot or other AI applications registered as Entra ID applications within the organization’s own tenant. Security teams should continue to rely on a layered approach, including sensitivity labels, app permission policies, and clear organizational guidelines regarding approved AI tools.
Frequently Asked Questions
Will this update affect my internal AI tools?
No. The “BlockDetectedBots” setting only targets external third-party apps. Your own tenant-registered AI tools and Microsoft 365 Copilot remain subject to your existing internal licensing and permissions.
What happens if a real person is blocked by mistake?
Detection is based on infrastructural and behavioral signals. If a legitimate participant is misidentified as a bot, the meeting organizer can override the block by admitting the attendee and marking them as a human participant.
Can I choose which meetings allow bots?
Yes. Policies can be scoped per user group. This allows you to enforce a hard block on sensitive meetings involving legal or executive teams while maintaining a more permissive policy for other staff members.
Did you know? Microsoft’s new policy rollout covers Android, desktop, iOS, Mac, and web platforms simultaneously, ensuring a consistent security posture regardless of how your employees choose to join their meetings.
Have questions about managing AI in your organization? Share your thoughts in the comments below or subscribe to our newsletter for the latest updates on Microsoft 365 security.
