Forum Discussion
New enhanced access controls in Azure AD: Tenant Restrictions is now Generally Available!
Interesting announcement to help customers restrict access to unapproved tenants within their network. Some potential holes and if you do a lot of collaborating with external parties it could be impractical, but definitely worth some research!
Will this prevent users in our directory who were invited as B2B guest users to another tenant from accessing that partner tenant from our network where tenant restrictions are in place? I posed this question at a MS tech summit and was told no - as the authentication takes place in in the invitee's tenant (as the identity directory). But isn't the access token given by the resource tenant with their tenant ID?
- Yeah, this is another great milestone in regards of secure access to any service and information where Azure AD is the entry point
