Azure B2C Guest (External Azure Active Directory) X Member (Federated Azure Active Directory)

0
votes

I implemented what's described in this doc:

Set up sign-in for multi-tenant Azure Active Directory using custom policies in Azure Active Directory B2C

It's related to this answer on SO.

Can we get a Guest (External Azure Active Directory) instead of a Member (Federated Azure Active Directory) added to the B2C Users list when logging in from a different tenant?

Is it always going to be a Member (Federated Azure Active Directory) when logging in from a different tenant?

I couldn't find any other information on this matter.

1
multi-tenantazure-ad-b2cfederated-identity

1 Answers

2
votes

An external account user, i.e. those who log in and register through a built-in or custom flow, must be created as a "Member"-type user in Azure AD B2C where their external identity is added to the userIdentities property of the user object.

Otherwise, you can use the guest functionality to add external users from other tenants, to co-manage your Azure AD B2C tenant.