News
Microsoft Build: Copilot Tuning and Model Context Protocol Expand AI Agent Development
At this year's Build conference, Microsoft unveiled a major expansion of its agent-based AI platform, highlighting new tools to securely build, customize and orchestrate intelligent agents across Microsoft 365 and Windows.
The announcements include Microsoft 365 Copilot Tuning, multi-agent orchestration, and foundational security controls for the Model Context Protocol in Windows 11.
Copilot Tuning Brings Low-Code AI Customization to the Enterprise
Microsoft 365 Copilot Tuning, announced on Monday, is a low-code solution that allows organizations to train AI models using their own data, workflows and processes
With Copilot Tuning, companies can build specialized agents tailored to domain-specific tasks. For example, a legal firm can train an agent to draft documents in its preferred language and tone, while a consulting firm can fine-tune agents for industry-specific expertise. These agents operate within the secure Microsoft 365 boundary, and Microsoft says customer data is not used to train foundation models.
Copilot Tuning will be available starting in June through an early adopter program.
Multi-Agent Orchestration and Model Flexibility in Copilot Studio
Already used by more than 230,000 organizations, Copilot Studio now supports multi-agent orchestration, allowing agents to collaborate and divide tasks based on their areas of expertise. In public preview, this capability enables scenarios such as automated employee onboarding -- where HR, IT and operations agents coordinate in parallel to streamline the process.
Microsoft also announced broader model interoperability in Copilot Studio through integration with Azure AI Foundry, giving developers access to over 1,900 models, including industry-specific LLMs. This “bring-your-own-model” feature helps align agent behavior with business-specific terminology and logic.
Expanded Developer Tools for Agent-Centric Workflows
Microsoft is investing heavily in enabling pro-code development alongside low-code tools. The new Microsoft 365 Agents Toolkit, now generally available, includes a software development kit for debugging and deploying agents across Microsoft 365 apps and Teams.
Meanwhile, a new Teams AI library aims to help developers optimize agents for chats, channels and meetings, with support for open standards such as the Agent-to-Agent (A2A) protocol and MCP. Microsoft also previewed Microsoft 365 Copilot APIs, starting with retrieval and chat capabilities, to let developers embed Copilot features into custom applications while respecting organizational permissions.
Developers can now oversee and manage agent workflows using a new Agent Feed within Power Apps, while Solution Workspace streamlines the app-building process with generative UI capabilities and support for code-first deployment in Visual Studio Code.
Windows 11 Secures the Model Context Protocol for Agent Interoperability
On the OS front, Microsoft detailed how Windows 11 will adopt and secure the Model Context Protocol (MCP) -- an emerging standard for inter-agent communication and orchestration.
MCP allows agents and applications to discover and invoke tools in a consistent, HTTP-based format, but its openness introduces new risks, including prompt injection, command injection and tool poisoning.
To counter these threats, Microsoft is building a secure MCP architecture into Windows 11 that includes:
- Proxy-mediated communication, where all MCP traffic is routed through a trusted Windows component that enforces centralized policies and auditing.
- Tool-level authorization, requiring user approval for each agent-tool interaction.
- A central registry of vetted MCP servers meeting baseline security requirements.
- Runtime isolation and privilege enforcement to minimize impact in case of compromise.
MCP servers listed in the Windows registry must meet strict criteria, including mandatory code signing, immutable tool definitions, declared privilege scopes and security-tested interfaces. An early developer preview of the MCP platform will roll out after Build 2025, with secure-by-default enforcement expected in the coming months.