Manage Bot Visibility

This section explains the restrictions applied to bots using classified or private connections, designed to enhance security and comply with Security Assessment and Recommendations (SAR) and HRIX processes.

  1. Feature Overview:

    1. Bots using private connections have restrictions on public access and conversation history.

    2. Alerts are provided to inform users on UI, when certain features are disabled due to private integrations.

  2. Purpose:

    1. These restrictions aim to mitigate the risk of unauthorized data exposure, also known as bot exfiltration.

  3. Management:

    1. Governance of private connections involves internal oversight to ensure security compliance.

    2. Infrastructure management is responsible for maintaining these restrictions.

  4. Current Scope:

    1. These measures apply to internal users only but may be adapted for external requirements as needed.

  5. Prerequisites :

    1. The bot must be integrated with classified or private connections recognized by the system.

    2. The system infrastructure must be configured to identify and manage these private connections.

    3. Users must have access to the latest system updates to ensure compliance with these restrictions.

    4. Applicable for any organization which has enhanced security requirements and want to restrict bot visibility for apps that have private data connection.

Impact

  1. If any assistant is using a private connection, option to “grant public access” will be disabled, along with the reason and name of private connection.

    1. Click on “manage” for any available assistant:

b. Option enabled in assistant settings when private connection is not used:

  1. Any assistant, if using a private connection, will be restricted from enabling call/text option with appropriate error message:

a. Error message displayed when user clicks on “Activate”:

3. For assistants with private connections, the conversation history will not be displayed or stored.

a. Open “chat history” for assistant with private connection:

b. For the selected bot, click on “submit”:

c. Error messages will be displayed:

  1. In Studio mode, Lex publishing is restricted for assistants with private connections.

a. Open assistant with private connection under custom apps:

b. Click on “Add app publishing” with Lex channel:

c. Save button will be disabled with reason and name of private connection mentioned:

PreviousBot GovernanceNextRAG File Upload

Last updated

Was this helpful?