SOLVED

Password sync across 2 Azure ad tenants

%3CLINGO-SUB%20id%3D%22lingo-sub-2573999%22%20slang%3D%22en-US%22%3EPassword%20sync%20across%202%20Azure%20ad%20tenants%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2573999%22%20slang%3D%22en-US%22%3E%3CP%3EGreetinsg%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Efor%20some%20reason%26nbsp%3B%20%26nbsp%3Bone%20of%20scenario%20%2C%26nbsp%3B%20we%20cane%20across%26nbsp%3B%20%26nbsp%3Bis%26nbsp%3B%20there%26nbsp%3B%20are%26nbsp%3B%202%20Azure%26nbsp%3B%20tenants%26nbsp%3B%20%26nbsp%3Band%26nbsp%3B%20hence%26nbsp%3B%20currently%20having%20users%20accounts%26nbsp%3B%20%26nbsp%3Blike%20%3CA%20href%3D%22mailto%3Au1%40ad1.com%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noreferrer%22%3Eu1%40ad1.com%3C%2FA%3E%26nbsp%3Band%20%3CA%20href%3D%22mailto%3Au1%40ad2.com%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noreferrer%22%3Eu1%40ad2.com%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Ecompany%20wants%20to%20continue%20keeping%20services%26nbsp%3B%20%26nbsp%3Bin%20use%26nbsp%3B%20in%202%20different%20tenants%3C%2FP%3E%3CP%3Ehowever%26nbsp%3B%20users%20Single%20sign%20on%26nbsp%3B%20is%26nbsp%3B%20problems%26nbsp%3B%20%2C%26nbsp%3B%20as%20in%26nbsp%3B%20if%26nbsp%3B%20%26nbsp%3B%3CA%20href%3D%22mailto%3Au1%40ad1.com%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noreferrer%22%3Eu1%40ad1.com%3C%2FA%3E%26nbsp%3Bpassword%20is%20chnaged%2C%26nbsp%3B%20it%26nbsp%3B%20has%20to%20be%20manually%20reset%26nbsp%3B%20%26nbsp%3Bby%20user%26nbsp%3B%20at%202%20different%20places.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%26nbsp%3B%20%26nbsp%3Blooked%20at%26nbsp%3B%20AD%20connect%20however%2C%20thats%20only%20supported%20in%26nbsp%3B%20on%20premise%26nbsp%3B%20domains%2Fforest%20to%26nbsp%3B%20%26nbsp%3BAzure%26nbsp%3B%20AD%20tenant%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Eis%20there%20resolve%2F%20method%26nbsp%3B%20%26nbsp%3B%20for%20above%20scenarios%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ERegards%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2573999%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%20AD%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EIdentity%20Management%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2579859%22%20slang%3D%22en-US%22%3ERe%3A%20Password%20sync%20across%202%20Azure%20ad%20tenants%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2579859%22%20slang%3D%22en-US%22%3EWhy%20using%202%20accounts%20when%20you%20can%20utilize%20a%20service%20Azure%20B2B%3F%20In%20this%20way%20you%20don't%20need%20to%20maintain%202%20users.%20Also%20if%20you%20set%20the%20UserType%20to%20Member%20for%20that%20Guest%20account%2C%20you%20will%20be%20able%20to%20add%20the%20Guest%20account%20to%20SharePoint%20access%20lists%20as%20well.%3CBR%20%2F%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fexternal-identities%2Fwhat-is-b2b%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fexternal-identities%2Fwhat-is-b2b%3C%2FA%3E%3C%2FLINGO-BODY%3E
Occasional Visitor

Greetinsg

 

for some reason   one of scenario ,  we cane across   is  there  are  2 Azure  tenants   and  hence  currently having users accounts   like u1@ad1.com and u1@ad2.com

 

company wants to continue keeping services   in use  in 2 different tenants

however  users Single sign on  is  problems  ,  as in  if   u1@ad1.com password is chnaged,  it  has to be manually reset   by user  at 2 different places.

 

We   looked at  AD connect however, thats only supported in  on premise  domains/forest to   Azure  AD tenant

 

is there resolve/ method    for above scenarios

 

Regards

1 Reply
best response confirmed by Trevor_Rusher (Community Manager)
Solution
Why using 2 accounts when you can utilize a service Azure B2B? In this way you don't need to maintain 2 users. Also if you set the UserType to Member for that Guest account, you will be able to add the Guest account to SharePoint access lists as well.

https://docs.microsoft.com/en-us/azure/active-directory/external-identities/what-is-b2b