![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 75%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
25,130 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 56.00000000000001%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECS%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Thank you for reaching out to us. As per your query you have configured an application in Azure AD for authentication. Now there are Azure AD user who can access the application without any issues. But you also have other users who use OKTA as Identity provider.
You want other users who use OKTA also to access this application which is configured in Azure AD.
To achieve this you can make use of Azure AD B2B collaboration, so that users who are external to Azure AD can also access the application.
With this method, authentication is still be done by OKTA, but user will be able to access the application as there identity will get provisioned in Azure AD as guest.
Azure Active Directory (Azure AD) B2B collaboration is a feature within External Identities that lets you invite guest users to collaborate with your organization. With B2B collaboration, you can securely share your company's applications and services with external users.
With Azure AD B2B, the partner uses their own identity management solution, so there is no external administrative overhead for your organization. Guest users sign in to your apps and services with their own work, school, or social identities.
The partner uses their own identities and credentials, whether or not they have an Azure AD account.
You don't need to manage external accounts or passwords.
You don't need to sync accounts or manage account lifecycles.
You can refer below articles to know about B2B collaboration and how you can configure it in Azure AD,
https://learn.microsoft.com/en-us/azure/active-directory/external-identities/what-is-b2b#collaborate-with-any-partner-using-their-identities
As per your query as there are other users using OKTA as identity provider, you will have to configure “Federation with SAML/WS-Fed identity providers for guest users”. You can refer below article to configure this,
https://learn.microsoft.com/en-us/azure/active-directory/external-identities/direct-federation
Do let me know if you have any further questions.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.