Summary Autonomous agents run in the background without user prompts, so they cannot ask users to sign in during execution. Use maker-provided credentials for tools; user credentials are not appropriate for autonomous scenarios. Apply least privilege and restrict tool actions to reduce data exposure and abuse. Communicate the “runs under author’s identity” warning and govern access like any service account. Table of Contents Why Authentication Matters Autonomous Agents: What Changes Authentication Models Configure Tool Authentication Restrict Tool Actions Publishing, Warnings, and Governance Best Practices Checklist Why Authentication Matters As organizations adopt autonomous agents to perform tasks and make decisions, authentication becomes a core control.

Summary Investigates missing search results despite crawl entries with no errors. Correlates SPItemModifiedTime blank entries with unsearchable files (while noting some blanks still indexed, so additional checks are required). Provides a PnP PowerShell script to detect affected items at scale. Shares remediation and prevention guidance. Table of Contents Background Symptoms Investigation Tenant-wide Detection Script How the Script Works Results Root Cause Fix Prevention Tips References Background A particular document library stopped returning many files in SharePoint search, even though the crawl log showed entries without errors.

Summary Error AADSTS650057 Invalid resource occurs when https://service.powerapps.com isn’t included in the app registration permissions for PnP.PowerShell. Fix by adding the Power Apps Service API with user delegated permission in Entra ID. Optional: add the permission through the app manifest with requiredResourceAccess. Symptom If https://service.powerapps.com from the entra ID used in PnP PowerShell is missing, you’ll see an error similar to: Get-PnPPowerApp: AADSTS650057: Invalid resource. The client has requested access to a resource which is not listed in the requested permissions in the client’s application registration.