Forum Discussion
Teams shared channels cannot add users when guests exist
We are trying to setup both B2B collab and B2B Direct. For Collab we want users to show up in the GAL, give access to users to SharePoint. Before we sync users we can add users to shared channels. Af...
Hello, not sure I understand the post. But B2B and B2B direct connect are two different things. B2B are guests being invited and added to your org. as guest objects. B2B direct connect is used for shared channels and doesn't create any user object in your tenant. It's like federation (external access) but with much better collaboration experience.
Shared channels can be used internally and externally. For the latter the config needs to be set up by the two orgs. admins or you won't be able to invite externals (using B2B direct connect) to the shared channel. For external access (federation) you use the TAC and for shared channels externally Azure AD External Identities cross-tenant access settings (sometimes TAC for some adjustments).
Shared channels can be used internally and externally. For the latter the config needs to be set up by the two orgs. admins or you won't be able to invite externals (using B2B direct connect) to the shared channel. For external access (federation) you use the TAC and for shared channels externally Azure AD External Identities cross-tenant access settings (sometimes TAC for some adjustments).
Right. We have both configurations working...where we are seeing issues is here.
Shared Channels works fine when a user is not synced using B2B Collab. It users B2B direct to look at the org we've established a relationship with. For users that are synced, even though their UPN now has #ext... when we search Shared Channels for their UPN email address removed for privacy reasons it doesn't look across at the other tenant, rather it seems to be picking up the guest user instead which can't be added to a shared team.
to test a theory I asked my colleagues on the other tenant to change the main email address and sync the user again. Here's what I found. When I searched on this new email address, it looked in the right place. When I searched using the users UPN, it still looked in my Azure AD and found the guest account that it can't use.
Shared Channels works fine when a user is not synced using B2B Collab. It users B2B direct to look at the org we've established a relationship with. For users that are synced, even though their UPN now has #ext... when we search Shared Channels for their UPN email address removed for privacy reasons it doesn't look across at the other tenant, rather it seems to be picking up the guest user instead which can't be added to a shared team.
to test a theory I asked my colleagues on the other tenant to change the main email address and sync the user again. Here's what I found. When I searched on this new email address, it looked in the right place. When I searched using the users UPN, it still looked in my Azure AD and found the guest account that it can't use.
- I can confirm this behaviour. Im going crazy trying to find a way to invite someone in a Shared Channel, who already has a guest user in our tenant. Should't B2B collab and B2B direct work at the same time? There should be way, to enforce searching externalyl, when looking for users to invite in a shared channel. But afaik there is none.
When I try to add someone (who already has a guest user) to a shared channel the user sometimes comes up with EXT, sometimes without. Either way Im getting an error, that a user from this org can't be added to this channel. If I try it with a different user from the same external org (who hasn't a guest user yet) it works fine.
Feels like MS has some work to do. bglmarks You can't have a b2b guest in a shared channel, it's a known limitation covered in the documentation
Shared channels in Microsoft Teams - Microsoft Teams | Microsoft Learn
- I know...You'd think teams wouldn't even search the local directory for a guest...you'd think it'd look at the remote tenant.
- I can't reproduce what you're experiencing. I have several guest users in my test tenant and when typing in their address in a shared channel invite I only get the [external] and not their [guest] suffix, to select.
