Regaring Permission of an MS Teams Applications

In Microsoft Teams, the permissions shown on the App overview page for a bot are system-defined based on the app’s capabilities (e.g., bot, tab, messaging extension) and cannot be customized or hidden by editing the app manifest.

Key points:

• Teams automatically displays a default set of permissions for bot apps, even if you do not explicitly declare them in your manifest.
• These permissions reflect what the Teams platform requires to enable bot functionality (e.g., read messages, access user profile).
• You cannot remove, hide, or selectively display these permissions via manifest configuration.

Summary: Permissions shown for bots on the App overview page are managed by Microsoft Teams and are not customizable by app developers.

Thanks,  

Prasad Das

*************************************************************************  

If the response is helpful, please click on "upvote" button. Your feedback is important to us. Please rate us: 🤩 Excellent 🙂 Good 😐 Average 🙁 Needs Improvement 😠 Poor

Click here to escalate. 

Hi Dishank Khatri

Thank you for reaching out to Microsoft Q&A forum

Based on your description, I understand that you currently have a Microsoft Teams conversational bot that functions in personal chats, group chats, and channels. On the App overview page, under Permissions, Teams automatically displays default permissions like “Send and receive messages and notifications” and “Access profile information.” These appear even though you didn’t define them in your app manifest and you want to know whether it’s possible to customize, limit, or remove these default permissions.

Regarding your questions, unfortunately, you cannot customize or hide those default permissions shown on the Permissions tab. The permissions you're seeing are automatically added by Microsoft Teams based on what type of app you've built. Since you have a bot in your app, Teams automatically shows permissions like "send and receive messages" because that's what bots do - they need to be able to message users.

To put it more simply: If you add a bot to your manifest, Teams assumes it will need basic bot capabilities and displays those permissions by default. You cannot hide or customize these default permissions because Microsoft uses them to show users and admins what your app is capable of doing. These are not permissions you request, they're permissions Teams assigns based on your app's components.

Link reference: Microsoft Teams apps permissions and consent - Microsoft Teams | Microsoft Learn

However, while you cannot control the default capability-based permissions, you can focus on managing the permissions you actually have control over and building trust with your users:

• Resource-Specific Consent (RSC) permissions: If your bot requires specific data access, define RSC permissions in your app manifest file through the Developer Portal under the Permissions section as states in Microsoft Learn
• Minimize your app's scope: Only declare the app components and capabilities your bot actually uses in your manifest to keep the default permissions minimal.
• Communicate clearly: Document in your app description what data your bot accesses and why. This transparency helps build trust with users and administrators, even though the default permissions will still be displayed by the platform.

Please feel free to leave a comment below if you require any additional help. 

Best regards

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".     

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.