Forum Discussion
External users and Office365 Groups, What about 2FA?
Hi Jaap Slot,
Unfortunately this is not (yet) supported. To use your own 2FA solution for guest users, you will need to add externals to your corporate directory and block employees to directly invite guests.
We have implemented this for SharePoint Online but at the moment these 'on-premise managed external users' are only supported in SharePoint Online and not in Office Groups or anywhere else in Office 365. The specific guest setting 'Allow sharing only with the external users that already exist in your organization’s directory' is only applicable to SharePoint Online.
We have an outstanding feature request for this with Microsoft and I would recommend you do the same.
Feel free to contact me directly if you want more information.
I posted this idea on uservoice:
"With the aquisition of LinkedIn a lot of identities are in reach. Maybe it will be possible to enforce only LinkedIn users with 2FA when trying to acces a customer tennant of O365?"
This could solve a lot of problems,..
Jaap Slot, interesting concept, but I can imagine this will take some time for Microsoft to get adopted and implemented.
- Today a Microsoft Operations Day. A lot of attention to security. Talking about red and blue teams. I guess 2FA is on a different team than O365 Groups, or the blue team on O365 hasn't looked upon O365 Groups and the validation of external users,..