Our B2C Active Directory is derived from a list of users for our tracking software. Each of those users are assigned programs and roles within the software allowing them access to specific data points and programs. In our B2C we have both users and groups paralleling the information in the tracking system. If I have access to the Appliance Program in the tracking system, I am in the Appliance Program Group in the B2C. The users in the tracking system utilize their company email address to log into the tracking system. We have an internal cache with logins and passwords that validate the user on sign in. When we moved the users to the B2C we retained their original company email address as an Alternate email in the Contact info section of their profile. The B2C address that is recreated relates back to this address through their profile. I am not sure if I can "guest" the B2C address but validate using the Alternate email. I do not have any administration rights on the main active directory. I also need to work on a method to add or subtract users from groups based on the groups in our B2C. I may be in 5 different groups and based on my company I may be removed from 1 of the groups but not the other 4. I need to be able to update the main AD without deleting or inactivating the user in total.
I hope this gives you more clarity.