Share via

Is it possible to federate a Workforce tenant with a Customer tenant to achieve SSO for corporate users?

Federico Gallo 0 Reputation points
2024-07-17T12:14:31.51+00:00

We are developing a customer facing SPA integrated with an External Entra ID tenant and this app will be accessed by corporate users hosted on a Workforce tenant.

We haven't been able to find a way to use the Workforce/Corporate credentials for SSO when accessing the App, as you would do with B2C https://learn.microsoft.com/en-us/azure/active-directory-b2c/identity-provider-azure-ad-single-tenant?pivots=b2c-user-flow

Is this something that can be achieved? Creating a separate set of credentials for a corporate users will introduce a lot of unnecessary friction.

Thanks in advance.

Microsoft Security | Microsoft Entra | Microsoft Entra External ID
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Akhilesh Vallamkonda 15,320 Reputation points Microsoft External Staff Moderator
    2024-07-18T06:27:01.7233333+00:00

    Hi @Federico Gallo

    Thank you for reaching us!

    To answer your question, yes, it is possible. To achieve this, you can use Entra ID B2B collaboration to invite users from the Workforce tenant to the Customer tenant as guest users. Once the guest users are added to the Customer tenant, they can use their Workforce credentials to sign in to the customer-facing SPA.
    For more information, please refer Workforce and external tenant configurations in Microsoft Entra External ID
    Hope this helps. Do let us know if you any further queries.

    Thanks,

    Akhilesh.

    If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.