This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 42%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMC%3C/text%3E%3C/svg%3E)
Hi, our company has an Entra directory of users and a proprietary directory of 3rd party customers. In the case of the 3rd parties, we want to take advantage of Entra's capabilities.
However, we've hit a roadblock as they have emails in multiple domains and none of them is in our company's domain, which is required for federation with Entra using SAML. What steps can we take to allow users from the proprietary directory to be managed in Entra, even if their emails don't match our domain?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Thank you for reaching out to the community forum!
For your query, I understand that you are trying to integrate the third-party directory users with Microsoft Entra ID.
To achieve you are ask you can use Microsoft Entra External ID to securely interact with users outside of your organization. This allows external users to use their own identities to sign in, which is ideal for collaborating with partners, distributors, suppliers, or vendors.
Also, you can use the B2B Collaboration which invite external users to sign in to your Microsoft Entra organization using their own credentials.
The other side if you want to federation with any organization with Entra ID the identity provider (IdP) supports the SAML 2.0 or WS-Fed protocol for additional reading Federation with SAML/WS-Fed identity providers for guest users.
Deploy Active Directory Federation Services in Azure
Hope this helps. Do let us know if you any further queries.
Thanks,
Akhilesh.
If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.
Hi @Maksymilian Chwałek
Following up to see if the above answer was helpful. If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.
Following up to see if the above answer was helpful. If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.