Copilot Studio can use a published Fabric Data Agent as a connected agent. The custom agent handles conversation, orchestration, topics, actions, and channel delivery; the Fabric Data Agent answers structured-data questions over approved sources. The low-code connection is easy to demonstrate, but production quality still depends on two agents, two permission layers, source semantics, authentication, policy, and the final channel.

Datrick starts with one business domain, one connected Data Agent, one authentication model, one user cohort, and one target channel. The pilot proves who authorizes each query, when orchestration selects Fabric, which source and query produce the result, how the custom agent presents it, and whether release and support teams can reproduce failures.

Will every user see only the Fabric data they are individually allowed to see? Decide that before selecting the connected agent's authentication mode.

Build the connected-agent contract first

Confirm Fabric capacity and tenant settings, cross-geo AI requirements, a working and published Data Agent, same-tenant alignment, Copilot Studio maker permissions and licenses, source access, and the target environment. Publish the Data Agent with a detailed description because the custom agent uses descriptions and generative orchestration to decide when collaboration is relevant.

Add the Fabric Data Agent from the connected agents experience, review or refine its description, choose authentication, enable generative AI orchestration, and test in the authoring pane. Treat that as integration validation, not production acceptance. The published custom agent and final channel can introduce different identity, sign-in, topic, and policy behavior. If the goal is direct Agent Store consumption rather than a custom connected agent, use the separate Microsoft 365 Copilot Fabric Data Agent rollout guide.

Design areaRequired decisionAcceptance evidence
Business scopeUsers, decisions, supported questions, excluded topics, authoritative sources, risk, quality, escalation, and owner.A bounded question set and ground truth approved by business and data owners.
Fabric Data AgentPublished version, sources, descriptions, instructions, examples, permissions, capacity, evaluation, and lifecycle.Direct tests prove source selection, generated query, result, RLS or CLS, and latency.
Connected agentCopilot Studio environment, description, authentication, generative orchestration, topics, triggers, actions, competing agents, and version.Representative prompts invoke the correct agent and unsupported prompts clarify or refuse.
IdentityUser authentication or agent author authentication, user sign-in, maker connection, source access, security groups, and recertification.Allowed users receive permitted answers; denied users fail closed in the production channel.
ChannelTeams, website, or other supported channel, SSO, user-authentication support, sharing, license, and rollout group.End-to-end acceptance passes in the actual channel, not only in test chat.
GovernancePower Platform data policy, maker credential policy, Fabric/Purview controls, audit, retention, privacy, publishing, and support.Admins can inventory, restrict, investigate, disable, and review the integration.
OperationsUsage, Fabric consumption, failures, corrections, latency, cost, source changes, incidents, release, and rollback.Quality and access regressions are detectable and mapped to an accountable owner.

Choose user or author authentication deliberately

Use user authentication when answers must follow each user's Fabric permissions. Every user needs at least read access to the published Data Agent and effective access to the underlying sources. Power BI RLS and CLS and other source-level controls remain part of the answer boundary. The intended channel must support user authentication and, for Teams scenarios, required SSO configuration must be validated.

Agent author authentication uses the maker's connection on behalf of users. This can simplify access for data every intended user is allowed to see, but it removes per-user Fabric authorization from the query path. Inventory the author's effective source access, narrow it to the approved domain, prevent personal credentials from becoming an unmanaged production dependency, and use Copilot Studio credential policies to restrict maker-provided credentials where appropriate.

Do not select author authentication merely because user access is difficult to configure. If source permissions are the intended control, bypassing them changes the security architecture. Document the decision, data classification, user population, maker ownership, credential lifecycle, review cadence, and emergency disablement path.

Make collaboration predictable

Generative orchestration decides when to invoke the connected Fabric Data Agent. Give both the custom agent and connected agent specific descriptions: domain, sources, supported metrics, intended users, time scope, and exclusions. Add topics or trigger phrases only where they improve deterministic handling without duplicating or conflicting with generative routing.

Test questions that should invoke Fabric, should invoke another connected agent or action, require clarification, and must not be answered. Include ambiguous terms, multi-turn context, conflicting sources, prompt injection, requests for unsupported documents or writes, and questions that combine Fabric data with an action. Verify that the custom agent does not overstate a summarized or incomplete Data Agent result.

Diagnose common integration failures

SymptomLikely boundaryDiagnostic action
Data Agent is missing from the listUnpublished item, wrong tenant or account, missing workspace access, disabled tenant setting, or unavailable environment.Verify publish state, same-tenant alignment, maker identity, workspace/source access, capacity, settings, and environment.
Connected agent is never invokedGenerative orchestration disabled, vague description, conflicting topic or connected agent, or unsupported question.Inspect orchestration behavior, tighten descriptions, use representative triggers, and compare in-domain with out-of-domain prompts.
User is prompted or authentication failsChannel does not support user auth, SSO is incomplete, token expired, or connection was not authorized.Test sign-in in the published channel, validate SSO and connection settings, and confirm the user's account and tenant.
Unauthorized or empty Fabric answerUser lacks Data Agent or source permission, RLS or CLS removes data, or author connection is invalid.Reproduce as the affected user, inspect selected source and effective access, and test the direct Data Agent.
Wrong or inconsistent answerCustom-agent routing, connected-agent routing, generated query, source data, conversation context, or final synthesis.Capture both agents' steps, query the source directly, and identify the first divergence from ground truth.
Works in test chat but not TeamsPublished version, sharing, license, channel support, SSO, authentication mode, or rollout group differs.Run production-channel acceptance with named users and inspect sign-in, connection, permissions, and release version.
Cost or latency grows after rolloutVerbose orchestration, repeated connected-agent calls, long context, retries, Fabric AI Query, generated source queries, or capacity.Trace call count and tokens, measure end-to-end timings, remove duplicate calls, bound retry, and monitor Fabric consumption.

Evaluate the actual published channel

  • Test orchestration selection, connected-agent handoff, Fabric source selection, generated query, raw result, final answer, and refusal separately.
  • Run allowed, restricted, and denied users under the selected authentication model across all sources and sensitive topics.
  • Exercise the intended channel's login, SSO, consent, connection refresh, license, sharing, and session behavior.
  • Measure correctness, relevance, grounding, clarification, latency, failures, retries, Copilot usage, Fabric AI Query, generated-query workload, and cost per accepted answer.
  • Retest after custom-agent, Data Agent, description, topic, source, semantic model, permission, policy, channel, or platform changes.
  • Block rollout when critical questions regress, authentication fails for intended users, a denied persona receives data, or the supported channel matrix does not match the use case.

Run a three-to-five-week connected-agent pilot

  1. Select one custom agent, one published Fabric Data Agent, one business domain, one authentication mode, one channel, and a named user cohort.
  2. Define ground truth, source authority, permission personas, quality thresholds, latency and cost targets, data policy, support, and preview risk ownership.
  3. Configure prerequisites, connect the Data Agent, refine descriptions, enable orchestration, and establish controlled maker and user access.
  4. Build orchestration, answer-quality, security, unsupported, adversarial, failure, channel, and consumption test sets.
  5. Publish to an isolated audience, test real sign-in and permissions, trace failures, remediate the correct layer, and repeat.
  6. Exercise source and permission changes, credential expiry, connected-agent unavailability, disablement, release, and rollback.
  7. Deliver architecture, authentication and permission matrix, evaluation suite, scorecard, policy decisions, channel runbook, support model, and go, limit, or stop recommendation.

Frequently asked questions

Can Copilot Studio connect to a Microsoft Fabric Data Agent?

Yes. Microsoft documents a preview connected-agent integration that allows a custom Copilot Studio agent to invoke a published Fabric Data Agent. The resources must be in the same tenant, the maker needs access to the Data Agent and its sources, and generative AI orchestration must be enabled. Validate the current license, tenant, capacity, authentication, and channel requirements before rollout.

Should a connected Fabric Data Agent use user authentication or agent author authentication?

Use user authentication when Fabric answers must reflect each user's source permissions, groups, RLS, or CLS. Every user then needs access to the published Data Agent and relevant sources. Agent author authentication uses the maker's connection and creates a shared authorization context, so it should be limited to explicitly approved low-risk scenarios with data that every intended user may access.

Why does our Fabric Data Agent not appear in Copilot Studio?

Confirm that the Data Agent is published and running, both resources are in the same tenant, the maker is signed in with the correct account, the maker has access to the Fabric workspace and underlying sources, required tenant and capacity settings are enabled, and the Copilot Studio environment allows the integration. An unpublished or inaccessible Data Agent isn't available for selection.

How do we test a Copilot Studio agent with a connected Fabric Data Agent?

Test the complete connected-agent path with representative users and the intended published channel. Measure orchestration choice, Fabric source routing, generated query, source result, final response, security behavior, clarification, refusal, latency, consumption, and errors. Include user and author authentication where considered, denied personas, competing topics or agents, prompt injection, source changes, and channel-specific sign-in.

How long does a Copilot Studio and Fabric Data Agent integration assessment take?

A focused pilot can often be completed in three to five weeks for one custom agent, one published Fabric Data Agent, one authentication model, one governed domain, and one target channel. The work covers prerequisites, connection, descriptions and orchestration, permissions, data policies, evaluation, publishing, channel acceptance, monitoring, support, and an adoption recommendation.

Official implementation references

Start with one connected Data Agent and one explicit authentication decision. Datrick can implement the pilot, test the real channel and personas, and deliver a defensible rollout recommendation.