Forum Discussion
Ellefs1
Sep 27, 2021Copper Contributor
Azure AD B2B SPO and OD integration + Whitelisting in AAD
Hi! I got some scenarios I'd love your input on: Configuration 1: - Whitelisting/allow list used in Azure AD - SPO and OD Azure AD B2B integration activated (and OTP) - SharePoint/OneDrive...
Sep 27, 2021
Hello again, I thought you'd settle for the previous one! Just kidding. I kind of understood you are aware of the options as how the initial question was asked, but had to put it out there.
Ellefs1 Doing a edit here because when opting in using AADB2B integration it doesn't take precedence (as previously said) but rather invitations in SharePoint are also subject to any domain restrictions configured in Azure AD. In other words, when not using AADB2B the AAD list works independently from OneDrive for Business and SharePoint Online allow/block list.
So, now it feels better 🙂
Ellefs1
Oct 01, 2021Copper Contributor
"Doing a edit here because when opting in using AADB2B integration it doesn't take precedence (as previously said) but rather invitations in SharePoint are also subject to any domain restrictions configured in Azure AD. In other words, when not using AADB2B the AAD list works independently from OneDrive for Business and SharePoint Online allow/block list."
Yes, this is aligned with my testes as well (I think). To be sure, this is how I experienced it without AADB2B integration:
- Guest Access to Teams and SharePoint will be controlled by the whitelist in AAD
- External Sharing will not be. So with SharePoint/OneDrive External sharing set to "New and existing guests" you can share any file/folder with any external using the "Specific people" option
This is at least what I experienced within my sandbox.