Add required role to a specific AD user to enable the user to manage users in an additional ADB2C tenant

Kern Carboni 0 Reputation points
2024-04-01T20:10:05.22+00:00

Hi All;

We have an existing company AD for our internal users as well as B2C tenant for a new project;

When I login to Microsoft Entra ID I can select Manage Tenants and the B2C tenant is listed, allowing me to switch to the Tenant and do the usual add Users etc. When the other developers use Microsoft Entra ID, the B2C tenant does not appear in the listing and they are unable to switch directories; from what I understand I automatically have Global Admin rights for the B2C Tenant as creator which is why it is displayed in my directory listings? What roles would I need to add to other AD users to allow them to view and select the B2C tenant in Microsoft Entra ID?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,694 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Babafemi Bulugbe 3,705 Reputation points MVP
    2024-04-01T20:21:31.87+00:00

    Hello Kern Carboni,

    Thank you for reaching out.

    I understand that you would like to know what role you need to assign to the developers in your Entra ID tenant to be able to manage your organization's Azure B2C tenant.

    Please be informed that the Azure B2C tenant is a standalone tenant even when it was created from your main tenant.

    To allow your developers access to this tenant, the users need to be invited to the tenant as a guest and be assigned necessary permission on the tenant depending on the Objects (for example applications) that they will be managing in the Azure B2C tenant.

    NB: You can access and switch to the tenant because you created it. Your account is also external with the ExternalAzureAD identity in the tenant since it wasn't created within that tenant.

    Let me know if further assistance is required.

    Babafemi


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.