Share via

B2B Authentication to PaaS and IaaS?

Anonymous
2020-11-25T07:20:58.573+00:00

Hi,

I was wondering if anyone has managed to authenticate to an external tenant PaaS and IaaS level (SQL managed instance and Azure NetApp Files) using a B2B account? So far im finding it cannot be done, the B2B account requires an account creating in the tenant with at least AAD P1 licenced to it to authenticate.

Are there any 3rd party tools available that will either sync with the users home tenant to carry their credentials to the Guest tenant, or a tool which will cache the credentials in the Guest tenant per session when Guest B2B users log in?

Thanks
Ben

Microsoft Security | Microsoft Entra | Microsoft Entra External ID
Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Security | Microsoft Entra | Other

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Alfredo Revilla - Upwork Top Talent | IAM SWE SWA 27,526 Reputation points Moderator
    2020-11-27T17:31:02.897+00:00

    Hello @bc-consultancy, premium (P1) licenses are not required to be able to authenticate against Azure resources. Also, although guest users come from other tenants a security principal is created in the host tenant which allows them to authenticate and access its resources. If you want to access other tenants where the user is not a guess nor a member then that won't be possible.

    Please let me know if you need more help. If the answer was helpful to you, please accept it and optionally fill the feedback form it so that other members in the community can benefit from it.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.