![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(182.40000000000003, 87%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDK%3C/text%3E%3C/svg%3E)
Azure Cloud Services
An Azure platform as a service offer that is used to deploy web and cloud applications.
747 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 63%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
Hi Divya,
Certainly, when it comes to Azure, B2B collaboration and cross-tenant access settings can involve Azure Active Directory (Azure AD) and its associated services. Let me directly address your questions regarding completing B2B collaboration in cross-tenant access settings and managing user roles in Azure AD, particularly whether you can add external users as guests instead of members.
Completing B2B Collaboration in Cross-Tenant Access Settings:
Invitation and Setup:
- In Azure AD, an administrator from the source tenant initiates the B2B collaboration by inviting users from the target (external) tenant to access resources in their own tenant.
- The source tenant admin sends invitations using the user's email address.
Acceptance and Access:
- Users from the target (external) tenant receive the invitations and accept them. Once accepted, they can access specified resources in the source tenant.
Checking from Target Tenant:
Azure Portal:
- In the Azure portal of the target (external) tenant, administrators can go to "Azure Active Directory" > "External Identities" > "B2B Settings" to view the list of invited users and their roles.
User Listing:
- Within the "B2B Settings" section, you can see the list of guest users from the source tenant who have been invited and accepted the invitations. You can view their roles and their access levels.
Adding External Users as Guests Instead of Members:
Role Assignment:
- When you invite users from an external organization to collaborate in Azure AD B2B, you have the flexibility to assign them as either "Guests" or "Members."
Role Implications:
- "Guests" have limited access to resources in your tenant and are considered external collaborators.
- "Members" have more extensive access and are treated as internal users of your organization.
Changing Roles:
- If you initially invite an external user as a "Member," you can later change their role to "Guest" if necessary.
To summarize, completing B2B collaboration in cross-tenant access settings involves inviting users from an external organization to access resources in your tenant, which they can do once they accept the invitation. You can check the status of these invited users and their roles in the Azure portal under "B2B Settings."
Regarding the specific role assignment, you can choose to add external users as "Guests" instead of "Members" during the invitation process. Additionally, you can change a user's role from "Member" to "Guest" after they have been invited.
For detailed and up-to-date guidance, refer to Azure's official documentation on B2B collaboration and Azure Active Directory settings (https://docs.microsoft.com/en-us/azure/active-directory/b2b/ and https://docs.microsoft.com/en-us/azure/active-directory/).
I hope this helps with your query?