Which Microsoft Graph API to use to get UserID of a user external to an organization ?

Question

Which Microsoft Graph API to use to get UserID of a user external to an organization ?

Sudie 0

I'm looking to get the user id of a user outside of an organization with email address.

Eg: I am from xyz.com tenant, I have an email address "******@abc.com". I'm looking to get the aad user id of ******@abc.com. Which Graph API can I use for that.

Here's what I've tried and the questions I have :

Users api with filter - (Link) - This worked a couple of times but has been returning an empty result set. Why does it return an empty result set ?
Using filter with graph users API. I'm stuck on this as I am unaware of how to get "issuer". If I try with the domain name as shown in the below example - I still receive an empty result set.

 .filter('identities/any(c:c/issuerAssignedId eq \'******@yahoo.com\' and c/issuer eq \'yahoo\')')

**
Questions :
Is searching for a user outside the current organization supported ?

Which way would you recommend is reliable to find a user outside of an organization using just the email address ?

CarlZhao-MSFT 46,371 Reputation points

2023-07-18T08:13:38.5766667+00:00

Has the external user been invited or registered to the AD/AD B2C tenant?
JimmyYang-MSFT 58,641 Reputation points Microsoft External Staff

2023-07-18T08:44:32.4833333+00:00

@Sudie

Since your question is related to Teams api development, I will also add teams development tag to your thread. Thanks for your understanding!
Sudie 0 Reputation points

2023-07-18T16:18:02.2666667+00:00

Don't want to invite the external user to the tenant.
Want to do a federated chat with that user.

2 answers

Your answer

CarlZhao-MSFT 46,371 Reputation points

2023-07-18T08:13:38.5766667+00:00

Has the external user been invited or registered to the AD/AD B2C tenant?
JimmyYang-MSFT 58,641 Reputation points Microsoft External Staff

2023-07-18T08:44:32.4833333+00:00

@Sudie

Since your question is related to Teams api development, I will also add teams development tag to your thread. Thanks for your understanding!
Sudie 0 Reputation points

2023-07-18T16:18:02.2666667+00:00

Don't want to invite the external user to the tenant.
Want to do a federated chat with that user.

Answer 1

Hello @Sudie , in order to find/read a user object from another tenant you will need to gain access the user tenant. This is the reason why attempts within your own tenant are returning empty sets and why filtering by issuer will deliver the same result. If the user is external there won't be any information in your tenant. Issuer for guest user accounts is ExternalAzureAD.

Let us know if you need additional assistance. If the answer was helpful, please accept it and rate it so that others facing a similar issue can easily find a solution.

Answer 2

CarlZhao-MSFT 46,371

Hi @Sudie

This is expected, you cannot get the id of a user outside of the organization.

You can create a multi-tenant application in your tenant, then use an external user to log in to your multi-tenant application and obtain an access token, and finally call the /me endpoint.

User's image

Please note that you need to change /{tenant id} to /common when performing identity authentication.

Hope this helps.

If the reply is helpful, please click Accept Answer and kindly upvote it. If you have additional questions about this answer, please click Comment.

CarlZhao-MSFT 46,371 Reputation points

2023-07-20T01:53:43.27+00:00

Hi @Sudie

Hope things are going well. I am writing to see if the above suggestions help. If there's anything else we can help, feel free to let us know.

Share via

Which Microsoft Graph API to use to get UserID of a user external to an organization ?

2 answers

Your answer