Forum Discussion
AAD Guest Users and SPO list/library access
2. The group should be listed as a security group in azure portal in order for SPO to recognize and utilize it.
1. The AAD guest user account is not recognized by SPO in the permission-granting dialog, when I enter the name or e-mail prefix. (Did you mean something else?)
2. The domain group (AAD security group) in which the guest user is a member is recognized by SPO in the permission-granting dialog. Yesterday I might not have waited long enough for the data to sync on Msft's side.
From some testing, one explanation that appears possible, if not reasonable, is that domain security groups will be recognized, but that individual guest users will be recognized only if they have already accessed SPO resources through a file or folder sharing invitation. Is that possible?
- Correct once they access it will recognize when they are in the site collection user list. But to add an existing guest you need to use their full email. It’ll says external user etc. but it will still map to the existing guest account.
When I try to add this user by their e-mail address, SPO won't recognize it or allow me to click or tab out of the field. (I thought I had done this successfully yesterday, but perhaps not.) See the attached image.
