This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 43%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMJ%3C/text%3E%3C/svg%3E)
Hello Team,
I'm new to Azure, and i have a question/scenario about Azure B2B,
Let's assume i have an Azure tenant, and i want some external user (From an external Azure tenant) to access my ressources,
I will configure Azure B2B for that matter, my question is as follow
When i will invite an external user to my tenant via Azure B2B, once he will get the email notification, he will be able to sign in with his own credentials to my tenant, or he will be redirected to a portal when he will register, and then his new account will be created on my tenant?
And how can i identify B2B users (Invited users) on my Azure AD tenant ?
Thank you
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 23%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
When you invite a user to your tenant using an externally provided account, they become a guest account in your tenant, they will connect into the portal and likely go to their home tenant. They will need to change directory to do to your tenant. He won't need to use any other credentials, but access in your tenant will be limited to which resources you have granted the guest account access to.
To identify b2b users, generally, you will go to AAD and filter in member type = Guest (unless you have converted accounts to member), in which case you can search on those which have an 'invitation accepted' status of yes.
To understand more about Cross-tenant access with Azure AD external identities, refer the following video.
https://www.youtube.com/watch?v=3Pi_-pHIT_4
For for details refer:
https://learn.microsoft.com/en-us/azure/active-directory/external-identities/cross-tenant-access-overview
https://learn.microsoft.com/en-us/azure/active-directory/external-identities/cross-tenant-access-settings-b2b-collaboration
Hope this helps
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
When you invite a guest user to your tenant, authentication for that user always happens in home tenant.
For example: User from tenant A is invited to Tenant B. There is an invitation sent to user from tenant A. Once user accepts the invitation, they will be provisioned in Tenant B as a guest user.
Whenever user from tenant A tries to access resources from tenant B, authentication for user always happens in tenant A.
Post authentication user will be redirected to the resource in tenant B.
To identify guest users in tenant B, you can look at the user blade in Azure AD tenant B and the "user type" of guest users will be shown as "Guest".
Let me know if you have any further questions on this.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.