Home

What happens to the guest object, when a company gets federated?

%3CLINGO-SUB%20id%3D%22lingo-sub-933584%22%20slang%3D%22en-US%22%3EWhat%20happens%20to%20the%20guest%20object%2C%20when%20a%20company%20gets%20federated%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-933584%22%20slang%3D%22en-US%22%3E%3CP%3EDear%20Community%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EOur%20client%20has%20a%20scenario%2C%20where%20they%20will%20have%20the%20following%20type%20of%20users%3A%3C%2FP%3E%3CUL%3E%3CLI%3EInternal%20users%20(Members%20of%20client)%3C%2FLI%3E%3CLI%3EGuest%20users%20(Users%20invited%20for%20the%20tenant)%3C%2FLI%3E%3CLI%3EAzure%20B2B%20customers%20(Users%20that%20are%20federated%20into%20the%20AD)%3C%2FLI%3E%3C%2FUL%3E%3CP%3EWhat%20happens%20to%20a%20guest%20user%20%2F%20object%20in%20the%20AD%2C%20if%20the%20company%20(For%20example%3A%20Google.%20All%20users%20with%20%40google.com%20in%20their%20emails)%20gets%20federated%20with%20their%20own%20Azure%20AD%20through%20Azure%20AD%20B2B%3F%20Will%20the%20user%20simply%20be%20able%20to%20login%20with%20their%20%40google.com%20account%2C%20and%20all%20the%20access%20rights%20will%20stay%20the%20same%2C%20or%20will%20a%20new%20object%20be%20created%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%2F%2F%20Peter%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-933638%22%20slang%3D%22en-US%22%3ERe%3A%20What%20happens%20to%20the%20guest%20object%2C%20when%20a%20company%20gets%20federated%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-933638%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F431532%22%20target%3D%22_blank%22%3E%40PeterKrogshede%3C%2FA%3E%26nbsp%3BHi%26nbsp%3B%3C%2FP%3E%3CP%3Eplease%20try%20that%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fazuremarketplace.microsoft.com%2Fen-us%2Fmarketplace%2Fapps%2Fpro-vision.dayone%3Ftab%3DOverview%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fazuremarketplace.microsoft.com%2Fen-us%2Fmarketplace%2Fapps%2Fpro-vision.dayone%3Ftab%3DOverview%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-933756%22%20slang%3D%22en-US%22%3ERe%3A%20What%20happens%20to%20the%20guest%20object%2C%20when%20a%20company%20gets%20federated%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-933756%22%20slang%3D%22en-US%22%3E%3CP%3EThanks%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F277766%22%20target%3D%22_blank%22%3E%40odaliot%3C%2FA%3E%20for%20your%20quick%20response.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EPrimarily%2C%20I%20am%20looking%20for%2C%20what%20happens%20in%20the%20scenario%2C%20I%20have%20described.%20I%20will%20look%20for%20solutions%2C%20if%20I%20need%20a%20tool%20to%20solve%20it%20for%20me.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EDayOne%20does%20not%20seem%20to%20describe%20the%20scenario.%20I%20am%20not%20interesting%20in%20migrating%20the%20objects%20from%20the%20Azure%20AD%20B2B%20tenant%20but%20simply%20using%20the%20Azure%20AD%20B2B%20for%20identity%20provisioning%2C%20thereby%20keeping%20all%20groups%20on%20the%20user%20that%20were%20assigned%20on%20the%20original%20object.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-933812%22%20slang%3D%22en-US%22%3ERe%3A%20What%20happens%20to%20the%20guest%20object%2C%20when%20a%20company%20gets%20federated%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-933812%22%20slang%3D%22en-US%22%3Ethat%20exactly%20what%20Day-one%20do%3CBR%20%2F%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-933916%22%20slang%3D%22en-US%22%3ERe%3A%20What%20happens%20to%20the%20guest%20object%2C%20when%20a%20company%20gets%20federated%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-933916%22%20slang%3D%22en-US%22%3E%3CP%3EI%20can't%20read%20that%20from%20the%20description%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F277766%22%20target%3D%22_blank%22%3E%40odaliot%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20would%20like%20to%20know%2C%20how%20Azure%20AD%20handles%20this%20out-of-the-box%2C%20before%20looking%20into%20a%203rd%20party%20tool.%20What%20happens%20in%20the%20scenario%2C%20I%20have%20described%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-933936%22%20slang%3D%22en-US%22%3ERe%3A%20What%20happens%20to%20the%20guest%20object%2C%20when%20a%20company%20gets%20federated%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-933936%22%20slang%3D%22en-US%22%3EDay-One%20is%20not%20migrating%20the%20data%2C%20it%20shows%20all%20the%20customers%20tenants%20like%20they%20are%20on%20the%20same%20tenant%20-E.G.%20show%20free%20busy%20in%20calendar%20from%202%20separate%20tenants%3C%2FLINGO-BODY%3E
Highlighted
PeterKrogshede
New Contributor

Dear Community,

 

Our client has a scenario, where they will have the following type of users:

  • Internal users (Members of client)
  • Guest users (Users invited for the tenant)
  • Azure B2B customers (Users that are federated into the AD)

What happens to a guest user / object in the AD, if the company (For example: Google. All users with @google.com in their emails) gets federated with their own Azure AD through Azure AD B2B? Will the user simply be able to login with their @google.com account, and all the access rights will stay the same, or will a new object be created?

 

// Peter

4 Replies

Thanks@odaliot for your quick response.

 

Primarily, I am looking for, what happens in the scenario, I have described. I will look for solutions, if I need a tool to solve it for me.

 

DayOne does not seem to describe the scenario. I am not interesting in migrating the objects from the Azure AD B2B tenant but simply using the Azure AD B2B for identity provisioning, thereby keeping all groups on the user that were assigned on the original object.

that exactly what Day-one do

I can't read that from the description @odaliot

 

I would like to know, how Azure AD handles this out-of-the-box, before looking into a 3rd party tool. What happens in the scenario, I have described?

Day-One is not migrating the data, it shows all the customers tenants like they are on the same tenant -E.G. show free busy in calendar from 2 separate tenants
Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
46 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
13 Replies
How to Prevent Teams from Auto-Launch
chenrylee in Microsoft Teams on
29 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies