28 min readAmbient Capture

Implementation Guide: Transcribe Program Reviews, TIMs & Inter-Agency Coordination Calls — Generate Structured Action Item Logs

Step-by-step implementation guide for deploying AI to transcribe program reviews, tims & inter-agency coordination calls — generate structured action item logs for Government & Defense clients.

Use CaseImplementation Guide

Software Procurement

Microsoft 365 GCC High (E3 or E5)

MicrosoftE3 / E5Qty: per seat

E3: $36/user/month; E5: $57/user/month (GCC High pricing)

Microsoft 365 Government Community Cloud High (GCC High) is the FedRAMP High-authorized Microsoft cloud environment. It is required for organizations handling CUI under DFARS 252.204-7012, ITAR-controlled data, or DoD CUI. Includes Teams GCC High for virtual meeting capture, SharePoint GCC High for document storage, and access to Microsoft Copilot for M365 Government (where authorized). Do not use commercial M365 or standard GCC for ITAR or DoD CUI — only GCC High meets the tenant isolation requirements for these data types.

Warning

Do not use commercial M365 or standard GCC for ITAR or DoD CUI — only GCC High meets the tenant isolation requirements for these data types.

Microsoft Teams GCC High — Transcription & Recording

Microsoft Teams GCC High — Transcription & Recording

Microsoft (included in M365 GCC High)Teams GCC High

Included

Included with E3/E5 GCC High

Teams GCC High provides native meeting recording and transcription within the FedRAMP High authorization boundary. Transcripts are stored in OneDrive for Business (GCC High), which meets DFARS 252.204-7012 cloud storage requirements. AI-generated meeting summaries and action items via Microsoft Copilot for M365 Government are available with E5 licensing or Copilot add-on ($30/user/month).

Microsoft Azure AI Speech (GCC High / IL4)

Microsoft Azure AI Speech (GCC High / IL4)

Microsoft Azure GovernmentAzure AI Speech (formerly Cognitive Services Speech)Qty: Per audio hour

~$1.00–$1.50/audio hour (Azure Government pricing)

Azure AI Speech running in Azure Government regions (USGov Virginia, USGov Arizona) provides FedRAMP High-authorized speech-to-text transcription. Used when building a custom transcription pipeline outside of Teams — for example, processing recordings from physical conference rooms or legacy telephony systems. Supports speaker diarization (identifying who said what) with up to 36 speakers.

Microsoft Azure OpenAI Service (Azure Government)

Microsoft Azure GovernmentGPT-5.4Qty: Consumption-based (per token)

GPT-5.4: ~$0.005/1K input tokens, ~$0.015/1K output tokens (Azure Government)

Azure OpenAI running in Azure Government regions provides FedRAMP High-authorized access to GPT-5.4 for generating structured action item logs, meeting summaries, and follow-up drafts from raw transcripts. Required for any LLM-based processing of CUI.

Critical

Do not use commercial OpenAI API (api.openai.com) for CUI-containing transcripts — it is not FedRAMP authorized.

Otter.ai for Government (Unclassified / Low CUI only)

Otter.ai for Government

Otter.aiBusiness / Enterprise SaaSQty: Per seat

Business plan: $20/user/month; Enterprise: contact vendor

Otter.ai provides AI meeting transcription, speaker identification, action item extraction, and meeting summary generation. The Government/Enterprise tier offers a BAA-equivalent data processing agreement and SOC 2 Type II certification. Appropriate for unclassified meetings and low-sensitivity CUI only. Not FedRAMP authorized — do not use for ITAR, export-controlled, or DoD CUI Level 2+ data. Best for civilian agency contractors, grant-funded research, or unclassified program coordination meetings.

Warning

Not FedRAMP authorized — do not use for ITAR, export-controlled, or DoD CUI Level 2+ data. Appropriate for unclassified meetings and low-sensitivity CUI only.

Granola (Meeting Notes AI — Unclassified)

Granola

GranolaSaaS per-seatQty: per user

$18/user/month

AI notepad that runs locally on macOS/Windows, captures system audio without a bot joining the meeting, and generates structured notes and action items post-meeting. Because processing can occur locally (with optional cloud sync disabled), Granola offers a more privacy-preserving option for sensitive-but-unclassified meetings where a cloud bot joining the call is unacceptable to the government customer. Confirm data residency settings before use with any CUI.

Warning

Confirm data residency settings before use with any CUI.

Vanta (CMMC / NIST 800-171 Compliance Platform)

VantaSaaS annual subscriptionQty: 1

$15,000–$25,000/year depending on org size

Automated compliance monitoring for CMMC Level 2/3 and NIST SP 800-171 requirements. Tracks controls, collects evidence, manages POA&Ms, and prepares documentation for C3PAO assessments. The AI transcription system must be documented as a new information system within the CMMC boundary — Vanta automates much of this documentation and evidence collection.

Hardware Procurement

Poly Studio X70 Dual Camera Conference System

Poly (HP)Studio X70Qty: Per conference room

$3,500–$4,200 per unit (MSP cost) / $4,500–$5,500 suggested resale

Premium all-in-one video conferencing bar with dual 4K cameras, 20-element microphone array, and AI-powered speaker tracking. Designed for medium-to-large conference rooms (program review rooms, war rooms). Native integration with Microsoft Teams Rooms (GCC High compatible). Captures high-quality audio for transcription even in large rooms with multiple simultaneous speakers. No separate microphone pods required for rooms up to 30 feet.

Shure MXA920 Ceiling Array Microphone

ShureMXA920Qty: 1–2 per large conference room

$1,800–$2,200 per unit (MSP cost) / $2,500–$3,000 suggested resale

Ceiling-mounted array microphone with IntelliMix DSP for automatic echo cancellation, noise suppression, and acoustic echo cancellation. Critical for large program review rooms where tabletop microphones are insufficient. Integrates with Dante audio networking for clean signal routing to the recording system. Required for rooms larger than 600 sq ft or with more than 12 participants.

Neat Bar Pro

NeatNeat Bar ProQty: Per smaller meeting room

$2,200–$2,800 per unit (MSP cost) / $3,000–$3,500 suggested resale

All-in-one Teams Rooms device for small-to-medium conference rooms (huddle rooms, IPT rooms). 8-microphone array with AI noise cancellation. FedRAMP-compatible when used with Teams GCC High. Lower cost alternative to Poly Studio X70 for smaller rooms. Includes Neat Pad scheduling display.

Lenovo ThinkPad T14s (Government Edition)

LenovoThinkPad T14s Gen 4Qty: As needed for mobile capture

$1,400–$1,800 per unit

TAA-compliant laptop for program managers attending off-site meetings, government facilities, or locations without permanent AV infrastructure. Used to run the Granola or Otter.ai desktop client for local audio capture.

Warning

TAA compliance (Trade Agreements Act) is required for equipment purchased on federal contracts. Confirm TAA compliance on all hardware procurement for government clients.

Prerequisites

  • Facility security clearance (if applicable): If any meetings to be captured occur in a Sensitive Compartmented Information Facility (SCIF) or a closed area, electronic recording devices are strictly prohibited. Confirm with the client's Facility Security Officer (FSO) that the target meeting environments are approved for electronic recording equipment before any deployment begins.
  • CUI data classification determination: The client's Information System Security Officer (ISSO) or Data Owner must formally classify the sensitivity of meeting content before selecting a platform. Unclassified → Otter.ai or Granola acceptable. CUI/DFARS → Azure Government + Teams GCC High required. ITAR-controlled → Azure Government IL4/IL5 required. Classified → no commercial solution; out of scope.
  • Microsoft 365 GCC High tenant: If using Teams GCC High transcription, the client must have an active M365 GCC High tenant. Migration from commercial M365 or standard GCC to GCC High is a separate engagement (typically 4–8 weeks). Do not begin this deployment if the client is on commercial M365 and handling CUI.
  • Azure Government subscription: Required for Azure AI Speech + Azure OpenAI pipeline. Must be provisioned under the client's or MSP's Azure Government enrollment. Standard Azure (azure.com) is not authorized for CUI.
  • CMMC scoping document: Obtain the client's current CMMC System Security Plan (SSP) or scoping documentation. The AI transcription system must be added to the CMMC boundary if it processes, stores, or transmits CUI. Work with the client's ISSO to determine if an SSP update is required before go-live.
  • Network infrastructure: Conference rooms must have wired Ethernet connections for AV hardware (Poly Studio, Neat Bar). Wi-Fi is acceptable for laptop-based capture but wired is preferred for reliability. All network connections must be on the organization's CMMC-scoped network — do not connect AV devices to guest or visitor networks.
  • Government customer approval: For meetings with government customers (e.g., PMRs attended by a DoD Contracting Officer or Program Manager), the contractor must obtain explicit approval from the government customer before recording. Many government employees are prohibited by agency policy from consenting to recording of official government meetings by contractors. Obtain written approval and retain on file.
  • IT administrator access: MSP technician requires Global Admin access to the M365 GCC High tenant, Owner access to the Azure Government subscription, and local admin access to all AV hardware for configuration.

Installation Steps

Step 1: Configure Microsoft Teams GCC High for Meeting Recording and Transcription

Enable meeting recording and transcription policies in the Teams GCC High admin center. Configure retention policies to store recordings and transcripts in SharePoint/OneDrive GCC High in compliance with DFARS 252.204-7012 cloud storage requirements.

1
Install Microsoft Teams PowerShell module (if not already installed)
2
Connect to Teams GCC High tenant
3
Create a meeting policy that enables recording and transcription
4
Assign policy to program office users (replace with actual UPNs or group)
5
Verify policy assignment
6
Set retention policy for meeting recordings (90 days default — adjust per contract requirements)
Configure Teams GCC High meeting recording and transcription policies
powershell
Install-Module -Name MicrosoftTeams -Force -AllowClobber

Connect-MicrosoftTeams -TeamsEnvironmentName TeamsGCCH

New-CsTeamsMeetingPolicy -Identity "ProgramOfficePolicy" `
  -AllowCloudRecording $true `
  -AllowTranscription $true `
  -AllowRecordingStorageOutsideRegion $false `
  -RecordingStorageMode "OneDriveForBusiness" `
  -AutomaticallyStartCopilot Enabled

$users = Get-CsOnlineUser -Filter {Department -eq "Program Office"}
foreach ($user in $users) {
    Grant-CsTeamsMeetingPolicy -Identity $user.UserPrincipalName `
      -PolicyName "ProgramOfficePolicy"
}

Get-CsOnlineUser -Identity "pm.user@agency.gov" | Select-Object TeamsModernMeetingPolicy
1
Navigate in Teams Admin Center: Meetings > Meeting policies > ProgramOfficePolicy
2
Or via Compliance Center (compliance.microsoft.us for GCC High): Data lifecycle management > Retention policies > Create policy targeting Teams recordings
Note

GCC High tenant URLs differ from commercial: Admin center is admin.microsoft.us, Teams admin is admin.teams.microsoft.us, and Compliance center is compliance.microsoft.us. Meeting recordings in GCC High are stored in the organizer's OneDrive for Business (GCC High), not in a shared location. Configure SharePoint site collection policies to enforce CUI handling labels on all recording/transcript files. Copilot for M365 Government requires E5 + Copilot add-on license and must be enabled separately by a Global Admin.

Step 2: Deploy Azure Government Resources for Custom Transcription Pipeline

Provision Azure AI Speech and Azure OpenAI resources in Azure Government for organizations requiring a custom pipeline (e.g., processing audio from non-Teams sources such as physical room recorders or legacy telephony).

1
Install Azure CLI and log into Azure Government
2
Create resource group in USGov Virginia
3
Create Azure AI Speech resource (FedRAMP High authorized)
4
Retrieve Speech API key
5
Create Azure OpenAI resource in Azure Government
6
Deploy GPT-5.4 model
7
Create Storage Account for audio files (ZRS, GCC High region)
Install Azure CLI and log into Azure Government
bash
az cloud set --name AzureUSGovernment
az login
Create resource group in USGov Virginia
bash
az group create \
  --name rg-transcription-prod \
  --location usgovvirginia \
  --subscription "<AZURE_GOV_SUBSCRIPTION_ID>"
Create Azure AI Speech resource (FedRAMP High authorized)
bash
az cognitiveservices account create \
  --name speech-transcription-prod \
  --resource-group rg-transcription-prod \
  --kind SpeechServices \
  --sku S0 \
  --location usgovvirginia \
  --yes
Retrieve Speech API key
bash
az cognitiveservices account keys list \
  --name speech-transcription-prod \
  --resource-group rg-transcription-prod
Create Azure OpenAI resource in Azure Government
bash
az cognitiveservices account create \
  --name openai-actionitems-prod \
  --resource-group rg-transcription-prod \
  --kind OpenAI \
  --sku S0 \
  --location usgovvirginia \
  --yes
Deploy GPT-5.4 model
bash
az cognitiveservices account deployment create \
  --name openai-actionitems-prod \
  --resource-group rg-transcription-prod \
  --deployment-name gpt4o-deployment \
  --model-name gpt-5.4 \
  --model-version "2024-08-06" \
  --model-format OpenAI \
  --capacity 10
Create Storage Account for audio files (ZRS, GCC High region)
bash
az storage account create \
  --name stgtranscriptionprod \
  --resource-group rg-transcription-prod \
  --location usgovvirginia \
  --sku Standard_ZRS \
  --kind StorageV2 \
  --min-tls-version TLS1_2 \
  --allow-blob-public-access false \
  --https-only true
Note

All Azure Government resources are provisioned in USGov Virginia or USGov Arizona — never in commercial Azure regions. Confirm that the Azure subscription is enrolled under a proper government agreement (typically EA or CSP with government terms). Enable diagnostic logging on all resources and route logs to Azure Monitor / Log Analytics Workspace in the same government subscription for audit trail compliance under NIST 800-171 control AU-2 (Audit Events).

Step 3: Build the Audio-to-Action-Item Pipeline (Azure Functions)

Deploy an Azure Function App that automates the end-to-end pipeline: receive an audio file upload → transcribe via Azure AI Speech → generate action item log via Azure OpenAI → output a structured Markdown/JSON document → store in SharePoint GCC High.

Azure Function: transcribe_and_summarize/function_app.py — Deploy to Azure Functions (Consumption plan, USGov Virginia)
python
# Azure Function: transcribe_and_summarize/function_app.py
# Deploy to Azure Functions (Consumption plan, USGov Virginia)

import azure.functions as func
import logging
import os
import json
from azure.cognitiveservices.speech import SpeechConfig, AudioConfig, SpeechRecognizer
from azure.cognitiveservices.speech.audio import AudioStreamFormat, PushAudioInputStream
from openai import AzureOpenAI

app = func.FunctionApp()

SPEECH_KEY = os.environ["AZURE_SPEECH_KEY"]
SPEECH_REGION = os.environ["AZURE_SPEECH_REGION"]  # e.g., "usgovvirginia"
OPENAI_ENDPOINT = os.environ["AZURE_OPENAI_ENDPOINT"]
OPENAI_KEY = os.environ["AZURE_OPENAI_KEY"]
OPENAI_DEPLOYMENT = os.environ["AZURE_OPENAI_DEPLOYMENT"]  # "gpt4o-deployment"

ACTION_ITEM_PROMPT = """
You are a program management assistant supporting a defense contractor. 
You have been given a meeting transcript from a program review or technical interchange meeting.

Extract and structure the following from the transcript:

1. MEETING METADATA
   - Meeting type (PMR / TIM / IPT / Coordination Call / Other)
   - Date and time (if mentioned)
   - Attendees (by name and organization if identifiable)
   - Classification level (UNCLASSIFIED / CUI — state what is indicated in the transcript)

2. ACTION ITEMS
   For each action item identified, provide:
   - Action item number (sequential)
   - Description (clear, specific, actionable)
   - Owner (person responsible)
   - Due date (if mentioned; otherwise note 'TBD')
   - Priority (High / Medium / Low based on context)
   - Source (brief quote or context from transcript)

3. KEY DECISIONS
   List any formal decisions made during the meeting.

4. OPEN ISSUES / RISKS
   List any unresolved issues or risks raised that are not captured as action items.

5. NEXT MEETING
   Date, time, and agenda items for the next meeting (if discussed).

Format output as structured Markdown suitable for entry into a program management system.
Flag any content that may be CUI with [CUI] tag for reviewer attention.

TRANSCRIPT:
{transcript}
"""

@app.blob_trigger(arg_name="audioblob",
                  path="incoming-audio/{name}",
                  connection="AzureWebJobsStorage")
def process_meeting_audio(audioblob: func.InputStream):
    logging.info(f"Processing audio file: {audioblob.name}")
    audio_data = audioblob.read()

    # Transcribe using Azure AI Speech (batch transcription for files > 1 min)
    speech_config = SpeechConfig(subscription=SPEECH_KEY, region=SPEECH_REGION)
    speech_config.speech_recognition_language = "en-US"
    speech_config.request_word_level_timestamps()
    speech_config.enable_dictation()

    # Speaker diarization (up to 10 speakers for standard meetings)
    speech_config.set_property_by_name(
        "SpeechServiceConnection_SingleLanguageIdPriority", "Latency"
    )

    # For production: use Batch Transcription API for files > 15 minutes
    # See: https://learn.microsoft.com/azure/ai-services/speech-service/batch-transcription
    transcript_text = "[Transcript from Azure Speech batch job]"  # Replace with actual batch call

    # Generate action item log via Azure OpenAI
    client = AzureOpenAI(
        azure_endpoint=OPENAI_ENDPOINT,
        api_key=OPENAI_KEY,
        api_version="2024-08-01-preview"
    )

    response = client.chat.completions.create(
        model=OPENAI_DEPLOYMENT,
        messages=[
            {"role": "system", "content": "You are a defense program management assistant. Handle all content as CUI unless explicitly marked otherwise."},
            {"role": "user", "content": ACTION_ITEM_PROMPT.format(transcript=transcript_text)}
        ],
        temperature=0.1,  # Low temperature for factual extraction
        max_tokens=4000
    )

    action_item_log = response.choices[0].message.content
    logging.info("Action item log generated successfully.")

    # Output to storage (SharePoint upload handled separately via Graph API)
    return action_item_log
Note

For meetings longer than 15 minutes, use the Azure AI Speech Batch Transcription API rather than real-time recognition — it handles large audio files more reliably and supports speaker diarization across the full recording. The batch job submits the audio file URL (from the storage blob) and returns results asynchronously, typically within 5–15 minutes. Integrate with Microsoft Graph API (government endpoint: graph.microsoft.us) to automatically upload the generated action item log to the appropriate SharePoint GCC High document library for the program.

Step 4: Configure Physical Conference Room AV Hardware

Install and configure Poly Studio X70 or Neat Bar Pro in program review conference rooms. Register devices to the Teams GCC High tenant. Configure rooms as Microsoft Teams Rooms (MTR) resource accounts. ``powershell # Create Teams Room resource account in M365 GCC High # Run in Exchange Online PowerShell (GCC High) Connect-ExchangeOnline -ExchangeEnvironmentName O365USGovGCCHigh New-Mailbox -Name "Program Review Room A" -Alias "room-review-a" -Room -EnableRoomMailboxAccount $true ...

Step 5: Deploy Otter.ai for Government (Unclassified Environments)

For clients not handling CUI — civilian agency unclassified programs, grant-funded research organizations, or unclassified contractor coordination — deploy Otter.ai Business or Enterprise as the simpler, lower-cost alternative.

1
Create Otter.ai Enterprise account at https://otter.ai/contact-sales — Request Government/Enterprise tier with DPA (Data Processing Agreement), confirm SOC 2 Type II certification is current, and request data residency confirmation (US-only servers).
2
Configure SSO via Azure AD (GCC): In Otter.ai Admin Console > Security > SSO, select SAML 2.0, download Otter.ai Service Provider metadata, then in Azure AD (GCC) > Enterprise Applications > New Application > Non-Gallery, upload Otter.ai SP metadata, configure attribute mappings, and assign application to Program Office security group.
3
Connect Otter.ai to Microsoft Teams (GCC): In Otter.ai > My Apps > Microsoft Teams. NOTE: Use Teams GCC (not GCC High) for Otter.ai integration. Otter.ai OtterPilot bot joins scheduled Teams meetings automatically. Transcription begins when meeting starts, action items extracted at end.
4
Configure action item extraction settings: Otter.ai Admin > Settings > Action Items — enable automatic action item detection, set distribution to email summary to meeting organizer + designated PM.
5
Configure data retention: Admin > Settings > Data Retention — set retention period per agency records schedule (typically 3–7 years for program records), enable automatic deletion after retention period.
Azure AD attribute mappings for Otter.ai SAML 2.0 SSO configuration
yaml
# Azure AD SAML Attribute Mappings for Otter.ai SSO
User.mail → NameID
User.displayName → display_name
User.department → department
Critical

Do not connect Otter.ai to Teams GCC High — Otter.ai is not authorized for GCC High environments. GCC High requires the Azure AI Speech + Azure OpenAI pipeline described in Steps 2–3.

Note

Otter.ai's OtterPilot bot joins meetings as a visible participant — meeting attendees will see "OtterPilot" in the participant list. For meetings with government customers who may object to a bot attendee, use the local audio capture method (Granola or manual recording upload) instead of the bot approach. Always inform all meeting participants that recording and AI transcription is occurring before the meeting begins — this is both a legal requirement and professional courtesy in government contracting environments.

Step 6: Configure CUI Handling Labels in SharePoint GCC High

Apply Microsoft Purview sensitivity labels to all transcript and action item documents stored in SharePoint GCC High to enforce CUI handling requirements per NIST SP 800-171 and the CUI Registry.

powershell
# Connect to Microsoft Purview Compliance (GCC High)
Connect-IPPSSession -Environment USGovGCCHigh

# Create sensitivity label for CUI - Program Information
New-Label -Name "CUI-ProgramInfo" `
  -DisplayName "CUI // Program Information" `
  -Tooltip "Apply to documents containing CUI related to government programs" `
  -ContentType File,Email

# Configure label settings (encryption + marking)
Set-Label -Identity "CUI-ProgramInfo" `
  -EncryptionEnabled $true `
  -EncryptionProtectionType Template `
  -EncryptionRightsDefinitions "agency.onmicrosoft.us:VIEW,VIEWRIGHTSDATA,EDIT,PRINT,EXTRACT,REPLY,REPLYALL,FORWARD,OBJMODEL" `
  -HeaderText "CUI // PROGRAM INFORMATION" `
  -HeaderFontSize 11 `
  -HeaderFontColor "#FF0000" `
  -FooterText "CONTROLLED UNCLASSIFIED INFORMATION" `
  -FooterFontSize 10 `
  -FooterFontColor "#FF0000"

# Create auto-labeling policy to automatically label transcripts
New-AutoSensitivityLabelPolicy -Name "AutoLabel-MeetingTranscripts" `
  -Labels "CUI-ProgramInfo" `
  -Locations "SharePoint","OneDriveForBusiness" `
  -Mode Enable

New-AutoSensitivityLabelRule -Policy "AutoLabel-MeetingTranscripts" `
  -Name "TranscriptKeywords" `
  -ContentContainsSensitiveInformation @{name="U.S. Defense Contract Number"; mincount="1"} `
  -Workload SharePoint,OneDrive

# Verify label policy is published
Get-LabelPolicy | Where-Object {$_.Name -like "*Transcript*"} | Select Name,Labels,Locations
Note

CUI category and subcategory labels must align with the National Archives CUI Registry (https://www.archives.gov/cui). Common categories for defense contractor program documents include: CUI//SP-EXPT (Export Controlled), CUI//SP-ITAR (ITAR), CUI//PROCURE (Procurement/Acquisition), and CUI//PRVCY (Privacy). Work with the client's ISSO and CUI Program Manager to determine the correct category before creating labels. Mislabeling CUI is a compliance violation — when in doubt, escalate to the client's CUI Program Manager rather than guessing.

Custom AI Components

Action Item Register Auto-Population Prompt

Type: Prompt A structured system prompt for the Azure OpenAI pipeline that extracts action items from meeting transcripts and formats them for import into common program management tools (Microsoft Project, Jira, or the contractor's Integrated Master Schedule system).

Implementation:

Action Item Register Extraction Prompt
text
# System Message for Azure OpenAI

## Action Item Register Extraction Prompt

SYSTEM PROMPT (configure as system message in Azure OpenAI call):

You are a defense program management assistant operating in a CUI environment.
Extract all action items from the following meeting transcript and format them
as a structured action item register suitable for import into a program management system.

For each action item, extract:
- AI# (sequential number, e.g. AI-001)
- Date Assigned (from transcript date or 'TBD')
- Description (specific, measurable, actionable — rewrite vague statements as clear tasks)
- Owner (Last Name, First Name if identifiable; otherwise role/organization)
- Organization (owner's organization/company)
- Due Date (exact date if stated; '+ X days' if relative; 'TBD' if not mentioned)
- Priority (Critical / High / Medium / Low — assess from discussion context and urgency language)
- Status (Open — all new items are Open)
- Source Quote (verbatim quote from transcript that generated this action, max 50 words)
- Notes (any caveats, dependencies, or conditions mentioned)

OUTPUT FORMAT: JSON array of action item objects. Example:
[
  {
    "ai_number": "AI-001",
    "date_assigned": "2025-01-15",
    "description": "Provide updated IMS baseline reflecting revised CDR date to PM office",
    "owner": "Smith, John",
    "organization": "Contractor XYZ",
    "due_date": "2025-01-22",
    "priority": "High",
    "status": "Open",
    "source_quote": "John said he'd get us the updated IMS by next Wednesday at the latest",
    "notes": "Must include CDR date change impact on downstream milestones"
  }
]

RULES:
- Only extract genuine action items (commitments to do something by someone)
- Do not fabricate owners or due dates not mentioned in the transcript
- Flag ambiguous action items with a [NEEDS CLARIFICATION] note
- Mark any content containing contract numbers, program names, or technical specs with [CUI-REVIEW]
- If no action items are identified, return an empty array with a note explaining why

TRANSCRIPT:
{transcript_text}

Teams Meeting Auto-Summary Power Automate Flow

Type: Integration

A Power Automate (GCC High) flow that triggers when a Teams GCC High meeting recording is completed, automatically initiates the transcription pipeline, and posts the structured action item log to the program's SharePoint site and sends a summary email to all attendees.

Implementation

Flow Trigger

  • Trigger: When a file is created in OneDrive for Business (GCC High)
  • Folder: /Recordings (Teams auto-saves recordings here)
  • File type filter: *.mp4

Step 1: Get File Metadata

  • Action: Get file properties
  • Extract: filename, created date, file URL, meeting organizer

Step 2: Parse Meeting Name from Filename

Teams recording filenames follow: "Meeting Name-YYYYMMDD_HHMMSS-Meeting Recording.mp4". Use a 'Compose' action with the following expression:

Power Automate expression to parse meeting name from filename
text
split(triggerBody()?['Name'], '-')[0]

Step 3: Check if Transcript Already Exists

  • Action: Get file (OneDrive)
  • Path: /Transcripts/[meeting-name]-transcript.vtt
  • Configure 'Run after': Set to run even if previous step fails
  • If transcript exists: use Teams-native transcript (skip Azure Speech)
  • If no transcript: trigger Azure Function via HTTP POST

Step 4: HTTP POST to Azure Function (if no native transcript)

Note

.azurewebsites.us = Azure Government endpoint, not .azurewebsites.net

HTTP POST request to Azure Function for transcription processing
http
POST https://[function-app].azurewebsites.us/api/process_meeting_audio
x-functions-key: [function-key]
Content-Type: application/json

{
  "audio_url": "[OneDrive file URL]",
  "meeting_name": "[parsed name]"
}

Step 5: Create Action Item Document in SharePoint (GCC High)

  • Action: Create file (SharePoint GCC High — sharepoint.us domain)
  • Site: https://[tenant].sharepoint.us/sites/ProgramOffice
  • Folder: /Action Item Registers/[Year]/[Month]
  • Filename: [meeting-name]-AI-Register-[date].md
  • Content: [output from Azure Function / Copilot]
  • Apply sensitivity label: CUI-ProgramInfo (via Purview API call)

Step 6: Send Email Summary to Attendees

  • Action: Send email (Office 365 GCC High)
  • To: [meeting attendees from calendar event]
  • Subject: Action Items — [Meeting Name] — [Date]
  • Body: HTML-formatted action item table (top 10 items, link to full register)
  • Attachment: Full action item register document

Step 7: Create Tasks in Microsoft Planner (GCC High)

For each action item with an identified owner, create a Planner task with the following fields:

  • Action: Create task (Planner)
  • Plan: Program Office Action Items
  • Title: [AI#] — [Description]
  • Assigned to: [Owner UPN]
  • Due date: [Due Date]
  • Notes: [Source Quote + Notes]

Governance

  • Flow runs as a Service Account (not personal user account)
  • Service Account — OneDrive permission: Read (source recordings folder only)
  • Service Account — SharePoint permission: Read/Write (program site action items library only)
  • Service Account — Planner permission: Read/Write (program plan only)
  • Service Account — Exchange permission: Send As (service account mailbox)
  • Log all flow runs to Azure Monitor Log Analytics (GCC High) for audit trail

Testing & Validation

- Audio capture quality test: Record a 10-minute simulated program review meeting with 4–6 speakers in the target conference room. Upload to the transcription pipeline and verify: (a) all speakers are captured clearly, (b) speaker diarization correctly distinguishes between speakers, (c) transcript word error rate is below 10% for standard American English speech. - CUI boundary test: Confirm that no audio data or transcript content is transmitted to commercial cloud endpoints. Use Wires...

Client Handoff

...

Client Handoff Meeting Agenda (60 minutes — Program Manager + ISSO + IT Lead)

1. Architecture Review (10 min) - Review data flow: microphone → Teams GCC High / Azure Government → SharePoint GCC High → Planner - Confirm all data remains within the authorized boundary (no commercial cloud touchpoints for CUI) - Present network diagram showing AV device VLAN, firewall rules, and authorized egress points 2. Compliance Documentation (15 min) - Present updated CMMC SSP section covering the AI transcription system - Review CUI sensitivity label configuration and auto-la...

Maintenance

Monthly Tasks

  • Review Azure Government cost dashboard — monitor Azure AI Speech and Azure OpenAI consumption costs. Alert client if monthly consumption exceeds budget thresholds.
  • Verify Power Automate flow run history — check for failed runs and investigate any errors in the processing pipeline.
  • Review SharePoint storage utilization for the recordings and transcript libraries. Confirm retention policies are executing deletions on schedule.
  • Check Teams GCC High admin center for any policy changes or license compliance issues.

Quarterly Tasks

Annual Tasks

  • CMMC assessment preparation: Ensure all evidence of the AI transcription controls (audit logs, SSP, data flow diagrams, CUI label reports) is current and accessible for the annual CMMC assessment or surveillance review.
  • Azure resource right-sizing: Review Azure AI Speech and OpenAI consumption patterns. Adjust capacity commitments to optimize cost.
  • Records schedule review: Confirm the data retention period for meeting transcripts and action item registers still aligns with the client's agency records schedule and any applicable contract records requirements.

Alternatives

Veritone Government (FedRAMP High Authorized Transcription)

AWS GovCloud — Amazon Transcribe + Bedrock

Amazon Transcribe (AWS GovCloud) provides FedRAMP High-authorized speech-to-text with speaker diarization, and Amazon Bedrock (GovCloud) provides access to Claude and other LLMs within the FedRAMP High boundary. Architecturally equivalent to the Azure Government pipeline described above but on AWS infrastructure. Best for: Organizations already standardized on AWS GovCloud. Tradeoffs: Requires AWS GovCloud account provisioned through proper government contracting channels; less native integration with Microsoft 365 GCC High than the Azure approach.

On-Premises / Air-Gapped Solution (Classified-Adjacent Environments)

Want early access to the full toolkit?

All Government & Defense solutions