A user in our domain is invited to the SharePoint of another organisation. But when trying to log in, they get the message "Your account is locked" and "We have discovered suspicious activity on your account." Furthermore; "Contact NAME OF USER'S ORG administrator".
This usually happens when users have Risky sign ins, and in those cases, it is easily solved by dismissing user risk, which sets the risk level from high/medium to low.
However, this user has no risky sign ins. That means I can't find the user's risk level or dismiss anything.
Is there a way to dismiss user risk outside of the Risky sign in list? Or am I looking in the wrong place? Are there other factors affecting the user risk? The user is able to log in to our own systems as normal.