Forum Discussion
SharePoint Permission for guest users through security groups
I noticed something strange in SharePoint Online and would like to get your confirmation for this behaviour or your comment if I am doing anything wrong.
We have many guest users in our organisation and some of them need access to SharePoint. This access can be given if I add those users in the library settings explicitly:
- The site has guest sharing enabled
- The guests are already added in our AD (existing guest users)
- The library has unique permissions
This works as expected and guests can access.
But if I add those guest users to an AAD security group (not a SharePoint group) and add the group in this list, they always get this screen here:
This is an issue, because we are using security groups in many libraries and adding users manually is a huge pain... do you have any suggestions?
Are guest users from security groups not synced in the corresponding SharePoint groups?
- Do you add the AAD group inside an existing sharepoint group or directly in root site permissions? This procedure you are describing we're using a lot since we also use dynamic group membership to populate those guest accounts and then add those dynamic groups to sharepoint. So from what I can understand this should work as you want.
- Sorry for the late reply. I didn't see the notification.
I am adding the AAD group in the site visitors group.
The site visitors group is a SharePoint group, but I do not use dynamic groups.
However, an external user does not get access to the site through a group. Only throug a direct user assignement. Any further idea? That is an important issue for us...- Also: When I "check permission" I receive none as a result 😞
David_Elsner I am running into the same issues now. Were you able to find a solution?
- No, I could not find a solution.. maybe just not supported to allow external users access via groups 😞
