Forum Discussion
Do we need a new way to manage guest access in Teams?
Hi EliteFlames6 ;
Have a look at this - https://docs.microsoft.com/en-us/azure/active-directory/governance/manage-guest-access-with-access-reviews . Youi need extra licenses for Azure AD.
There is some soon to be released functionality. Called Expiring External Access feature for a site. The documentation for this was released ahead of the functionality and has been pulled by Microsoft but you can see the functionality in action here -
https://myignite.techcommunity.microsoft.com/sessions/81495?source=sessions
That's all I know about at present.
Hi David Phillips ,
Teams and SharePoint guest access are separate so you can definitely ensure that SharePoint sites are created without guest access allowed, assuming some sites in your tenant need guest access on, then you would need to configure the domain whitelist, to restrict any guest sharing in SharePoint on creation of any new Team. This is done in the SharePoint Admin centre.
How this works is the site collection will get created with guest access on but as there are no whitelisted domains in the site collection yet, so no guests can be added.
As for Teams I have not had to do that so maybe someone else can point you in that direction.
Andy Hodges | ThinkShare | www.thinkshare.uk
Understood that they are separate access, however as you know, when you create a Team, a SharePoint site also gets created. Right now there is no way to centrally manage guest access to both - SP can be set in the console, Teams needs powershell. Also, whitelisting doesn't really apply in every scenario. Some may need more granular control at a per-Team level.
ThereseSolimeno This doesn't really answer the question. There doesn't appear to be a way to set org only access by default in either SharePoint or Teams. My question was if anyone is aware of something on the roadmap to change this. EDITED - I have unmarked it as the best response. (TS)