Enable Global Secure Access for Copilot Studio agents
Implementation Effort: Low – Requires enabling the Global Secure Access for Agents toggle in the Power Platform Admin Center for the target environment or environment group.
User Impact: Low – Infrastructure configuration; Copilot Studio agents begin routing traffic through Global Secure Access without end-user interaction.
Overview
Copilot Studio agents connect to external services, APIs, and data sources through custom connectors — and by default, that outbound traffic flows directly to the internet without passing through any network security controls. The organization has no visibility into what destinations agents reach, no ability to filter or block risky connections, and no mechanism to enforce the same network security policies that apply to user and device traffic. This gap means agents can access malicious destinations, exfiltrate data to unsanctioned services, or interact with compromised endpoints without triggering any alert.
Enabling Global Secure Access for Copilot Studio agents routes agent connector traffic through Microsoft's Security Service Edge, bringing it under the same network security stack that governs user traffic. Once enabled in the Power Platform Admin Center, all new custom connectors in the selected environment automatically route through Global Secure Access. Existing connectors must be edited and saved to pick up the new routing. This is the prerequisite step — it does not enforce any policies on its own, but it makes agent traffic visible and controllable by the web content filtering, threat intelligence filtering, and network file filtering policies configured in Global Secure Access.
This supports Assume breach by ensuring that agent outbound traffic is subject to the same inspection and filtering controls as user traffic, eliminating a network path that threat actors could exploit to bypass organizational security controls. It supports Verify explicitly by making agent network activity visible in Global Secure Access traffic logs, enabling the security team to validate that agents communicate only with approved destinations. Without this enablement step, Copilot Studio agents operate as unmonitored network actors with unrestricted outbound access, which contradicts the Zero Trust principle that no traffic should be implicitly trusted.