AD: Updating identity email address of a guest user

Anna 26 Reputation points
2022-12-21T09:26:28.207+00:00

I am trying to update the email address of a guest user, to let him log in with the new credentials to the same account.
Is it possible at all? What could I do in order to achieve that?

Tried to update the user's identities with a PATCH request:
https://graph.microsoft.com/v1.0/<tenant id>/users/<userid>

body:

{
"identities": [
{
"signInType": "emailAddress",
"issuer": "<tenant domain>",
"issuerAssignedId": "<new email address>"
},
<other identities as obtained with a GET request>
]
}

I get:

"error": {  
    "code": "Request_BadRequest",  
    "message": "Property creationType is invalid.",
Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Security | Microsoft Graph
0 comments No comments
{count} votes

Accepted answer
  1. Andy David - MVP 157.5K Reputation points MVP Volunteer Moderator
    2022-12-21T11:20:48.313+00:00
    1 person found this answer helpful.

1 additional answer

Sort by: Most helpful
  1. Ali AlEnezi 1,081 Reputation points
    2022-12-21T11:30:49.393+00:00

    Hello @Anna ,

    It is not possible to update the email address of a guest user in Azure Active Directory (AD) using the method you described. The email address of a guest user is considered a unique identifier, and it cannot be changed once the guest user has been invited to the directory.

    If you need to update the email address of a guest user, you will need to remove the guest user from the directory and then re-invite them using the new email address. To do this, you can use the Azure AD Graph API or the Microsoft Graph API to delete the guest user and then create a new guest user with the updated email address.

    Alternatively, you can update the email address of the guest user in the identity provider that was used to invite the user to Azure AD. For example, if the guest user was invited using a Microsoft account, you can update the email address for the Microsoft account and then re-invite the guest user to Azure AD using the updated Microsoft account.

    I hope this is helpful.

    Regards,


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.