cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

guest user admin

%3CLINGO-SUB%20id%3D%22lingo-sub-297777%22%20slang%3D%22en-US%22%3Eguest%20user%20admin%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-297777%22%20slang%3D%22en-US%22%3E%3CP%3EHi%26nbsp%3B%3C%2FP%3E%3CP%3EI%20was%20once%20thought%20by%20and%20MVP%20that%20the%20%22right%20way%22%20to%20get%20into%20a%20clients%20Azure%20Portal%20was%20to%20create%2Finvite%20my%20own%20mail%20as%20a%20guest%20user%20and%20then%20afterwards%20assign%20the%20proper%20Directory%20roles%20(global%20admin%2C%20exchange%20admin%20etc.)%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHowever%20-%20I%20get%20into%20the%20(clients)%20Azure%20portal%20just%20fine%20and%20can%20do%20anything%20in%20there%20(and%20can%20switch%20directories)%20-%20but%20when%20I%20try%20to%20go%20to%20the%20O365%20admin%20portal%20or%20the%20EXO%20admin%20-%20I%20get%20my%20own%20%22Tenant%22%20and%20can't%20switch%20to%20the%20clients%20tenant.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAre%20this%20the%20%22right%22%20way%20or%20do%20I%20need%20a%20%3CCLIENT%3E.onmicrosoft.com%20global%20admin%20-%3CBR%20%2F%3Eif%20not%20-%20how%20do%20I%20%22switch%22%20to%20the%20client%20admin%20o365%2FEXO%20ecp%20admin%20center%3F%3C%2FCLIENT%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHope%20it%20makes%20sense%20-%20otherwise%20I%20can%20elaborate%20%3A)%3C%2Fimg%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-297777%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-815245%22%20slang%3D%22en-US%22%3ERe%3A%20guest%20user%20admin%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-815245%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F108979%22%20target%3D%22_blank%22%3E%40Taen%20keren%3C%2FA%3E%26nbsp%3B%20Great%20question!%20Lost%20few%20days%20didn't%20found%20solution.%20Opening%20ticket%20%3A)%3C%2Fimg%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2099170%22%20slang%3D%22en-US%22%3ERe%3A%20guest%20user%20admin%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2099170%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F108979%22%20target%3D%22_blank%22%3E%40Taen%20keren%3C%2FA%3E%26nbsp%3B%3CBR%20%2F%3ESorry%20to%20pull%20this%20one%20out%20of%20the%20grave%2C%20but%20I%20came%20across%20this%20by%20chance%2C%20and%20thought%20I%20would%20just%20fill%20out%20the%20answer%20for%20anyone%20else%20passing%20by%20%3A)%3C%2Fimg%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3C%2FP%3E%3CP%3EThe%20thing%20is%20that%20a%20guest%20identity%20is%20not%20really%20the%20best%20way%20to%20access%20these%20other%20portals%20-%20MS%20is%20working%20on%20it%2C%20but%20this%20work%20is%20mostly%20relevant%20for%20Partners%20that%20have%20adopted%20the%20partner%20identity%20eco%20system.%3CBR%20%2F%3E%3CBR%20%2F%3EIF%20you%20are%20%22just%22%20helping%20out%20a%20few%20clients%20and%20have%20never%20bothered%20to%20setup%20your%20MS%20partner%20account%20for%20management%20of%20clients%2C%20then%20you%20would%20be%20best%20off%20by%20creating%20a%20dedicated%20user%20in%20the%20clients%20tenant.%3CBR%20%2F%3EThere%20is%20nothing%20%22wrong%22%20in%20doing%20this%2C%20but%20you%20might%20not%20enjoy%20having%20to%20manage%20too%20many%20separate%20identities%20though.%3CBR%20%2F%3E%3CBR%20%2F%3EHope%20this%20helps.%3CBR%20%2F%3E%3CBR%20%2F%3EMore%20on%20MS%20Partner%20delegated%20access%20here%3A%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fpartner-center%2Fcustomers-revoke-admin-privileges%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EObtain%20a%20customer's%20admin%20privileges%20-%20Partner%20Center%20%7C%20Microsoft%20Docs%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Taen keren
Super Contributor

‎Dec 08 2018 04:26 AM - edited ‎Dec 08 2018 04:27 AM

‎Dec 08 2018 04:26 AM - edited ‎Dec 08 2018 04:27 AM

guest user admin

Hi 

I was once thought by and MVP that the "right way" to get into a clients Azure Portal was to create/invite my own mail as a guest user and then afterwards assign the proper Directory roles (global admin, exchange admin etc.)

 

However - I get into the (clients) Azure portal just fine and can do anything in there (and can switch directories) - but when I try to go to the O365 admin portal or the EXO admin - I get my own "Tenant" and can't switch to the clients tenant.

 

Are this the "right" way or do I need a <client>.onmicrosoft.com global admin -
if not - how do I "switch" to the client admin o365/EXO ecp admin center?

 

Hope it makes sense - otherwise I can elaborate :) 

Labels:
584 Views
0 Likes
2 Replies
Reply
2 Replies
Branko Sabadi

‎Aug 21 2019 07:57 AM

‎Aug 21 2019 07:57 AM

Re: guest user admin

@Taen keren  Great question! Lost few days didn't found solution. Opening ticket :)

1 Like
Reply
Michael Mardahl

‎Jan 26 2021 12:36 PM

‎Jan 26 2021 12:36 PM

Re: guest user admin

@Taen keren 
Sorry to pull this one out of the grave, but I came across this by chance, and thought I would just fill out the answer for anyone else passing by :)


The thing is that a guest identity is not really the best way to access these other portals - MS is working on it, but this work is mostly relevant for Partners that have adopted the partner identity eco system.

IF you are "just" helping out a few clients and have never bothered to setup your MS partner account for management of clients, then you would be best off by creating a dedicated user in the clients tenant.
There is nothing "wrong" in doing this, but you might not enjoy having to manage too many separate identities though.

Hope this helps.

More on MS Partner delegated access here: Obtain a customer's admin privileges - Partner Center | Microsoft Docs

0 Likes
Reply