How to create a B2B extranet with more than two organizations?

Veidel94 21 Reputation points
2022-11-05T09:25:47.157+00:00

Ten companies work closely together on two business projects. Five out of the ten companies already use Microsoft Teams. I would like to know what the different options are for them:

  • Option 1: set up an Azure B2B direct connect? How many organizations would be able to get set up a mutual trust relationship with other Azure AD organizations for seamless collaboration? Is Azure B2B direct connect limited to 2 organizations?
  • Option 2: set up an external access? This type of federation enables Teams users from one of the 10 companies to find, call, and chat with people in other organizations using external access. But can the 9 other companies call, chat, share documents directly without involving the tenant?
  • Option 3: set up an Azure B2B collaboration? This option allows external users to be invited into the organization’s tenant through a guest account in Azure Active Directory. Azure B2B collab works with guest access in Teams, providing invited guests access to the team and channel resources. But can the 9 other companies call, chat, share documents directly without involving the tenant?

Thanks for your feedback and guidance.

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,639 questions
0 comments
Accepted answer
  1. JimmySalian-2011 41,916 Reputation points
    2022-11-06T18:15:55.087+00:00

    Hi Veidel,

    As this is a complex and critical stage of the design, I will suggest you to review the Azure Multi-tenant options and explore the different approach you can take. It is not one size fit all, so consider different multi options and combinations of pros and cons for the answers. design-multi-tenant-architecture

    I will prefer option 3 as this is straight forward and matches your requirements, there is not restrictions AFAIK and you can easily invite guests and provide access to the apps as required. Check out the AAD Service Limit resttrictions so will clear the confusion - directory-service-limits-restrictions

    Hope this helps.
    JS

    ==
    Please Accept the answer if the information helped you. This will help us and others in the community as well.

    0 comments

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Veidel94 21 Reputation points
    2022-11-06T21:00:06.053+00:00

    Thanks a lot JimmySalian!
    For my record and my understanding, I'd like to know if in the case of option 1 (set up an Azure B2B direct connect) Azure B2B direct connect is limited to 2 organizations: do you know? Or can it be set up for up to 10 organizations?

    Thanks in advance