Allow B2C users to log into Teams org-only live events, sync B2C AD to B2B AD as external users and automate sending of invites

Barry Swales 1 Reputation point
2020-03-19T11:25:09.523+00:00

I need to host a Teams live event that customers pay to attend. I have a B2B AAD and a B2C AAD, with a virtual machine set up running Windows Server 2019.

Teams has 3 access options: specific people in the org, all people in the org (both for authenticated AAD users), or public (no authentication). The public option will not work, as this would mean people that have not paid could also join.

The only solution I am aware of would be to add customers that are in the B2C AD to the B2B AD as external users, so they can be authenticated and then access the live event.

I have read that this is achievable using directory sync with Azure AD Connect, but it seems to only apply to on-premise active directory, which is not what I have.

I have been told that, in order for a user to be added to the B2B AD, they need to be sent an invite first.

My questions are:

  1. Is it possible to set up directory sync using Azure AD Connect without using an on-premise AD?
  2. If not, how can the process be automated, whereby a user being added to the B2C AD triggers an invitation being sent to then to join the B2B AD as an external user, as part of a specific group?
  3. How can the content of this invitation email be customised?

Thanks

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,640 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,473 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. AmanpreetSingh-MSFT 56,306 Reputation points
    2020-03-23T08:39:40.79+00:00

    @Barry Swales Please find below the answers to your questions:

    • Is it possible to set up directory sync using Azure AD Connect without using an on-premise AD?

    No, it is not possible to set up directory sync using Azure AD Connect without using an on-premise AD.

    • If not, how can the process be automated, whereby a user being added to the B2C AD triggers an invitation being sent to then to join the B2B AD as an external user, as part of a specific group?

    You can use graph call to invite B2B users as mentioned in the document here:
    https://learn.microsoft.com/en-us/graph/api/invitation-post?view=graph-rest-1.0&tabs=http
    Refer to https://learn.microsoft.com/en-us/graph/json-batching for posting multiple invites as a batch job.

    • How can the content of this invitation email be customised?

    Here is the document that explains how to customize the invitation content:
    https://learn.microsoft.com/en-us/graph/api/resources/invitedusermessageinfo?view=graph-rest-1.0

    -----------------------------------------------------------------------------------------------------------

    Please Accept as answer wherever the information provided helps you to help others in the community.

    1 person found this answer helpful.
    0 comments