TATER Power Automate Integration
Automate compliance workflows using the TATER custom connector for Microsoft Power Automate. Trigger flows when scans complete, create risk acceptances, post summaries to Teams, and integrate with the rest of your Microsoft 365 environment.
Role required: An API key with Admin-level access is needed for write actions (creating risk acceptances, triggering scans). Auditor-level keys work for read-only actions.
Overview
TATER provides a custom connector definition (OpenAPI/Swagger format) that you import into Power Automate in minutes. Once connected, you have access to:
- Trigger: React to TATER events using the webhook trigger (scan completed, compliance drift detected)
- Actions: Get compliance data, create risk acceptances, create risks, retrieve the audit log, trigger new scans
Import the Custom Connector
Step 1 — Download the connector definition
Download TATER-PowerAutomate-Connector.json from the TATER documentation.
Step 2 — Import into Power Automate
- In Power Automate, go to Data → Custom Connectors.
- Click + New custom connector → Import an OpenAPI file.
- Name it TATER Compliance and upload the JSON file.
- On the Security tab, verify the authentication type is API Key with header name
x-api-key. - Click Create connector.
Step 3 — Create a connection
- In your custom connector, go to the Test tab and click + New connection.
- Paste your TATER API key (from Settings → API Keys) when prompted.
- Click Create connection.
Available Actions
| Action | Description | Required role |
|---|---|---|
| Get Compliance Data | Returns flat compliance datasets (controls, scans, risks, overrides, overview). Same data as the Power BI endpoint. | Auditor |
| Create Risk Acceptance | Creates a risk acceptance (override) for a control, with justification and optional expiry date. | Admin |
| Create Risk | Adds a new entry to the TATER Risk Register with likelihood, impact, owner, and treatment plan. | Admin |
| Get Audit Log | Retrieves the activity audit trail, filterable by action type and entity type. | Auditor |
| Trigger Compliance Scan | Queues a new compliance scan job via Azure Automation. Returns a job ID. | Admin |
Webhook Trigger — Scan Completed
TATER sends a webhook event every time a compliance scan is uploaded. You can use this as a trigger in Power Automate to start a flow automatically when a scan finishes.
Webhook event payload
The event is sent as a JSON POST to your configured webhook URL with the following structure:
{
"event": "scan.completed",
"timestamp": "2026-04-19T14:32:00.000Z",
"tenantId": "d9a7e925-...",
"organizationId": "org-xxxxxxxx",
"data": {
"scanId": "scan-uuid",
"scanType": "M365 Cloud",
"hostname": "DESKTOP-ABC123",
"passCount": 142,
"failCount": 23,
"manualCount": 18,
"totalCount": 183,
"complianceRate": 77.6
}
}The request also includes:
X-TATER-Event-Type: scan.completed— event type header for filteringX-TATER-Signature: sha256=<hmac>— HMAC-SHA256 signature of the payload using your configured webhook secret
Configure the webhook in TATER
- In Power Automate, create a flow using the When a HTTP request is received trigger.
- Copy the generated HTTP POST URL from that trigger.
- In TATER, go to Settings → Integrations → SIEM / Webhook.
- Enable the webhook, paste the Power Automate URL, and optionally set a secret for HMAC signature verification.
- Save. The next scan upload will fire the event to your flow.
Tip: In your Power Automate flow, add a Condition step after the trigger that checks
triggerOutputs()?['headers']?['X-TATER-Event-Type'] equals scan.completed. This lets you reuse the same webhook endpoint for multiple TATER event types in the future.
Example Flows
Post a scan summary to Microsoft Teams
- Trigger: When a HTTP request is received (webhook, see above)
- Action: Post a message in a chat or channel (Teams connector)
- Message:
✅ TATER scan complete — @{triggerBody()?['data']?['scanType']} | Compliance: @{triggerBody()?['data']?['complianceRate']}% | Pass: @{triggerBody()?['data']?['passCount']} | Fail: @{triggerBody()?['data']?['failCount']}
Create a ServiceNow incident when compliance drops below threshold
- Trigger: When a HTTP request is received (webhook)
- Condition:
triggerBody()?['data']?['complianceRate']is less than70 - If yes: Create Record (ServiceNow connector) with description from the scan payload
Weekly compliance email to the CISO
- Trigger: Recurrence — every Monday at 8:00 AM
- Action: Get Compliance Data (TATER connector) — dataset:
overview - Action: Send an email (V2) (Outlook connector) with the overview fields in the body
Trigger a Power BI dataset refresh after scan
- Trigger: When a HTTP request is received (webhook)
- Action: Refresh a dataset (Power BI connector) — select your TATER compliance dataset
Related Guides
- Power BI Integration — Connect Power BI Desktop or Excel to live TATER data
- Settings Reference — API key management, SIEM and webhook configuration
- Reports Guide — Built-in reports, CSV export, and the Trust Center