Hi, It should work using the model:
However, you probably will need to talk to Okta support to get the exact steps on how to configure.
Example:
https://help.okta.com/en-us/Content/Topics/Apps/Office365-Deployment/deploy-main.htm
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hi, will Azure AD work for B2B user's if we have federation enabled with okta ? We have Okta as primary IdP. Is there any issue or limitation when Okta is in-place and Azure AD b2b federation is enabled ?
Hi, It should work using the model:
However, you probably will need to talk to Okta support to get the exact steps on how to configure.
Example:
https://help.okta.com/en-us/Content/Topics/Apps/Office365-Deployment/deploy-main.htm
Thank you for reaching out to us. As per your query you have configured an application in Azure AD for authentication. Now there are Azure AD user who can access the application without any issues. But you also have other users who use OKTA as Identity provider.
You want other users who use OKTA also to access this application which is configured in Azure AD.
To achieve this you can make use of Azure AD B2B collaboration, so that users who are external to Azure AD can also access the application.
With this method, authentication is still be done by OKTA, but user will be able to access the application as there identity will get provisioned in Azure AD as guest.
Azure Active Directory (Azure AD) B2B collaboration is a feature within External Identities that lets you invite guest users to collaborate with your organization. With B2B collaboration, you can securely share your company's applications and services with external users.
With Azure AD B2B, the partner uses their own identity management solution, so there is no external administrative overhead for your organization. Guest users sign in to your apps and services with their own work, school, or social identities.
You can refer below articles to know about B2B collaboration and how you can configure it in Azure AD,
As per your query as there are other users using OKTA as identity provider, you will have to configure “Federation with SAML/WS-Fed identity providers for guest users”. You can refer below article to configure this,
https://learn.microsoft.com/en-us/azure/active-directory/external-identities/direct-federation
Please do let me know if you have any queries in the comments section.
Thanks,
Akshay Kaushik
Please "Accept the answer" (Yes), and share your feedback if the suggestion answers you’re your query. This will help us and others in the community as well.