Typoed email for invitation when converting to external user

Jeremy 136 Reputation points
2023-10-05T17:43:31.14+00:00

We were testing the 'convert to external user' feature outlined in this document:
https://learn.microsoft.com/en-us/azure/active-directory/external-identities/invite-internal-users

But we accidentally got the wrong email for this user. We noticed that we could update the mail attribute and send the invitation to the correct mail, but it still wanted a user signed in with the original misspelled email to accept the invite.
User's image

I know if you have an external guest with an accepted invite you can reset the invitation. But how can I do that in this unaccepted state? Unlike a regular guest I can't just delete the account and try again, this person would lose all of the access they've been granted via group membership and whatnot.

Is there a workaround to this other than removing the user in Azure and resyncing?

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,678 questions
{count} votes

Accepted answer
  1. Marilee Turscak-MSFT 34,786 Reputation points Microsoft Employee
    2023-10-06T00:52:41.89+00:00

    Hi @Jeremy ,

    Based on my understanding of your scenario, you should be able update the email address to the correct one by updating the InvitedUserEmailAddress property. https://learn.microsoft.com/en-us/azure/active-directory/external-identities/reset-redemption-status

    You can use either Powershell or Graph API to do this and should be able to set the redemption status.

    PowerShell
    
    AI Convert
    
    Copy
    Install-Module Microsoft.Graph
    Select-MgProfile -Name v1.0
    Connect-MgGraph -Scopes "User.ReadWrite.All"
    
    $user = Get-MgUser -Filter "startsWith(mail, 'john.doe@fabrikam.net')"
    New-MgInvitation `
        -InvitedUserEmailAddress $user.Mail `
        -InviteRedirectUrl "https://myapps.microsoft.com" `
        -ResetRedemption `
        -SendInvitationMessage `
        -InvitedUser $user
    

    If you mean that you have tried this and it did not work, let me know and we can troubleshoot. If you send me an email to AzCommunity@microsoft.com ("Attn: Marilee Turscak) and include your subscription ID, I can activate a one-time free support case to get this looked into.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful