Platform
Microsoft Teams Integration
Email is where identity tasks go to die. Bring reviews, PIM, provisioning, and support into Microsoft Teams with the same permissions as the User Portal and no parallel access model.
Self-Service Request Hub
Two Integration Tiers
Choose the integration depth that matches your Microsoft Teams deployment and security requirements.
Both tiers use the same Custodeum permissions model as the User Portal. Teams never introduces a separate access path.
Tier 1: Basic
Channel notifications via Microsoft Graph. Read-only posts with links back to Custodeum. No bot deployment required.
Tier 2: Advanced
Private chat from the Custodeum bot with Adaptive Cards to approve, reject, flag, and comment inline. Single-use action tokens.
Campaign reviews, PIM approvals, provisioning notifications, and reminder digests via channel broadcast or interactive private cards.
- Campaign review assigned
- PIM approval required
- Provisioning notifications
- Reminder and digest messages
The Teams bot Home launcher organizes capabilities by category. Users only see options available to them.
- Requests: native PIM form
- Provisioning: create accounts from templates
- Approvals: PIM and campaign reviews inline
- Support: My Users, Guided Workflows, My Tickets
- My Access: apps and entitlements
Each capability is admin-configured as Disabled, Read-only (opens web portal), or Actionable (full native Teams experience).
- Optional step-up verification (Okta Verify)
- Natural-language commands supported
- Paginated message log for troubleshooting
Traffic validated against your Microsoft tenant. Short-lived, single-use tokens for card actions. Full audit of every Teams-initiated decision.
- Tenant and endpoint validation
- Users mapped via M365 identity sync
- Source attribution in audit (TEAMS)