Solution Background
If you are using Microsoft Teams for voice communication, you may have encountered some annoying or unwanted calls from telemarketers, spammers, or pranksters. While individual users have the capability to block unwanted calls right from within the Teams client, you may have wondered how to block these numbers from reaching your organization entirely.
Fortunately, there are many flexible options available by leveraging Power Platform, Azure Automation, Microsoft Graph and the underlying PowerShell commonly used by tenant admins for automation.
For reference, this automation is built from the tenant administration documentation found HERE.
Platform Value
Although this task could be easily handled with PowerShell, I aim to showcase the broader concept of low-code development by integrating Power Platform with Teams Tenant administration and Azure Automation. These concepts can be applied to various automation needs, enabling you and your organization to reduce manual steps, minimize command-line errors, and scale tenant administration for those unfamiliar with PowerShell or MS Graph.
General Implementation
First, I need to clarify, this initial post will not include a detailed step-by-step walkthrough of the configuration. I plan to post those specific guides and downloadable examples on GitHub. For now, this post covers the key concepts to inspire creative thinking.
This example is highly flexible. While I used a Dataverse table to store and display data in a Gallery, you could also use a SharePoint list, Power BI, or even a simple Excel table. Additionally, you could configure the PowerApp to display only active tenant pattern block information. This is how I initially started, but I later recognized the value in including additional fields to document "who" submitted the blocked number request, "when" it was submitted, and the "why" or reason category.
Starting with Power Apps - determine your intent. Do you want to include additional data outside what is stored in Teams, and if so - is Dataverse, Sharepoint or Excel more flexible for you ?
A button to remove blocked numbers based on the selected row in the Gallery (OnSelect):
And a creative idea to leverage a timer control which is hidden from the user, which executes a Get Job Status every 2 seconds, to show the user the status of the job, and when it completes. (OnTimerEnd)
In Power Automate we leverage 4 flows:
- getBlockedNumbers (to retrieve current tenant blocked numbers and update our Dataverse table)
- setBlockedNumber - to insert a new pattern block
- remBlockedNumber - to remove selected blocked pattern or range
- updateStatus - triggerd from the PowerApp timer control, on timer end. The Timer ends every 2 seconds, runs the update status (using Get Job Status, with the jobId from the triggered job - get, set or remove).
Azure Automation Create Job:
It responds to the Power App with the JobID for reference to update the Job Status text control:
As I mentioned, I will cover these steps in more detail. Specifically the Job Status and Timer Control, JSON format to ingest records to Dataverse and also the remove row function - as this did get a little tricky, needing to find and use the Dataverse Record GUID which is often a hidden value in the Dataverse table, and needs to be exposed in order to define the GUID as a dynamic context variable.
Then we duplicate each flow to incorporate get, set, remove and check status.
To tie in the magic, an Azure Automation account is needed, with appropriate permissions. Create an automation account associated with the resource group desired, and a role assignment
As of this post, I chose to implement a separate runbook for each powershell function (one for get, set and remove). I do plan to consolidate this and leverage an input parameter for the 3 commands under one runbook.
Planner
Even when working independently, I prefer using Planner with a Kanban-style board to track my activities. I usually work in hour-long intervals (if I'm lucky), making it challenging to prioritize and complete tasks. The backlog feature helps me identify the minimum viable product requirements and prioritize additional features. This approach also simplifies the process of incorporating collaborative partners when necessary.
So what's next?
- Backlog Items - incorporate additional features and optimization methods. I have those listed in the Planner backlog above.
- GitHub package - Detailed implementation coming in GitHub
- Additional automation suggestions - Recently, Microsoft announced an upcoming change to the security posture regarding Teams Resource account creation (MC780743). While this change may seem controversial, it is ultimately designed to enhance security and align with other tenant and account creation roles. Some of my esteemed colleagues have started discussing this topic and have ideas to address this challenge using similar automation concepts. For more information, follow Carl Karawani and Martin Heusser.
No comments:
Post a Comment