Skip to main content
availability

Deployment: Invicti Platform on-demand, Invicti Platform on-premises

Microsoft Teams integration

Integrating Invicti Platform with Microsoft Teams enables your security and development teams to receive real-time notifications about scan results directly in your Teams channels. This integration keeps teams informed and allows for immediate response to critical security findings, fostering better collaboration between security and development teams. Authentication uses OAuth2. You don't need to create or maintain incoming webhook connectors in Teams.

Prerequisitesโ€‹

To set up this integration, you need:

  • Microsoft Teams work or school account: The integration requires a Microsoft Teams account backed by Microsoft Entra ID (work or school license). Personal Microsoft Teams accounts aren't supported. Personal accounts only support direct chats; work and school accounts support Teams and Channels, which this integration requires.

  • Microsoft Teams channel: A channel in one of your Teams where you want to receive notifications. Create the channel before setting up the integration.

On-premises only

For on-premises deployments, you must also provide your own Microsoft Entra ID app registration. You need the Tenant ID (Directory ID) and Client ID (Application ID) from a registered application. The registered app must have the following Microsoft Graph API delegated permissions:

  • Team.ReadBasic.All: read the list of teams you belong to
  • Channel.ReadBasic.All: read the list of channels in a team
  • ChannelMessage.Send: post messages to a channel
  • offline_access: maintain access without requiring re-authentication

If you don't manage Azure resources yourself, ask your Azure administrator to provide these values.

For on-demand deployments, Invicti provides a pre-configured public app. No app registration is required.

Multiple integrations for different notification typesโ€‹

You can create multiple Microsoft Teams integrations to organize notifications by purpose. Each integration targets one channel. Consider these example configurations:

  • Scan completion: a dedicated integration posting to a Security Reports channel for scan completed events
  • Scan failures: a separate integration posting to a Security Alerts channel for scan failed events

This allows you to configure different notification rules based on:

  • Event types: Scan completed, scan failed
  • Specific all assets, specific assets, and specific collections.

Step 1: Configure Invicti Platform integrationโ€‹

  1. In Invicti, select Integrations from the left-side menu.

  2. Switch to the Browse integrations tab.

Select the Browse integrations tab to display all available applications.

  1. Scroll down to Team communication and select Configure in the Microsoft Teams tile.

  2. In the Integration Details step, enter an Integration name (for example, My Teams Connection).

    On-premises only

    For on-premises deployments, also enter the Tenant ID and Client ID from your Microsoft Entra ID app registration.

  3. Click Authorize with Microsoft Teams. You are redirected to Microsoft's OAuth consent screen.

Integrations name and press Authorize with MS Teams
  1. Review the requested permissions and click Accept to grant Invicti access to your Teams organization.
Review the requested permissions and select Accept.

After approving, you are redirected back to Invicti and moved to the Channel configuration step.

  1. In the Channel configuration step:
    • Select a Team from the dropdown. Teams are listed by display name; private teams are marked with a ๐Ÿ”’ icon.
    • Select a Channel from the dropdown. The channel list updates based on the selected team.
Channel types

The channel dropdown shows standard, private (๐Ÿ”’), and shared (โคฎ) channels that the authorizing user has access to.

Private channels are only visible if the authorizing user is a member of that channel. To post to a private channel, make sure the user who performed the OAuth authorization is already a member.

Shared channels are channels shared with external organizations or teams. You can select them the same way as standard channels.

Select a Team and then select a Channel from the dropdowns.

  1. Click Send test message to verify the integration is working. A confirmation message is posted to the selected channel:

    This is a test message from the Invicti - Microsoft Teams integration.

  2. Click Save and finish to complete the integration.

  3. The Microsoft Teams integration is now visible in the list of My integrations.

Step 2: Configure notificationsโ€‹

info

This section provides basic instructions on how to create various automations. For more detailed instructions on how to create an automation, refer to the new automation document.

Send a Teams message on scan completionโ€‹

Click to expand step-by-step instructions

  1. Select Automations from the left-side menu.

  2. Populate these fields:

    • Name: send a Teams message on scan completion.
    • Description: sends a Teams message to the Security Reports channel when a scan is completed.

  3. Add an event of Scan completed.

  4. Add an action of Send to communicator and specify the correct Microsoft Teams integration.

The notification includes:

  • Scan target URL
  • Count of Critical, High, Medium, Low, and Informational vulnerabilities
  • A direct link to the scan details in Invicti

Send a Teams message on scan failureโ€‹

Click to expand step-by-step instructions

  1. Select Automations from the left-side menu.

  2. Populate these fields:

    • Name: send a Teams message on scan failure.
    • Description: sends a Teams message to the Security Alerts channel when a scan fails.

  3. Add an event of Scan failed.

  4. Add an action of Send to communicator and specify the correct Microsoft Teams integration.

The notification includes:

  • Scan target URL
  • A direct link to the scan details in Invicti

Managing the integrationโ€‹

To edit the integration:

  1. Select Integrations > My integrations from the left-side menu.
  2. Select the Microsoft Teams integration you want to update.
  3. Click Edit. All fields from the original setup are available to modify.
  4. Click Save and finish.

To delete the integration:

  1. Select Integrations > My integrations from the left-side menu.
  2. Select the Microsoft Teams integration you want to remove.
  3. Click Delete and confirm.
info

Deleting an integration does not affect any automations that reference it. Update or remove those automations separately to avoid notification failures.

Re-authorizing the integrationโ€‹

The integration uses OAuth2 refresh tokens to maintain access automatically. You don't need to re-authenticate on a regular basis.

If notifications stop posting to your Teams channel, the refresh token may have expired or been revoked. Common causes:

  • The user who authorized the integration left the organization or their Microsoft account permissions changed.
  • (On-premises only) The Microsoft Entra ID app registration was modified. For example, the client secret was rotated or permissions were changed.

To re-authorize:

  1. Go to Integrations > My integrations.
  2. Select the affected Microsoft Teams integration.
  3. Click Edit and go to the Integration Details step.
  4. Click Authorize with Microsoft Teams again and complete the OAuth consent flow.

Need help?โ€‹

Invicti Support team is ready to provide you with technical help. Go to Help Center

Last updated on
Was this page useful?