Yes it will take some time as we are rolling out the feature, in the mean time if you would like to access this settings you could do that via Azure Portal (http://manage.windowsazure.com) under Configure>User Access section - "Allow New Invitations".

That doesn't work either.  All 3 flip switches are enabled and still get the error message that you can only add people inside your organization.

David, we are still in the process of rolling out this feature, so it might take hours/days before you can see this feature light up in your tenant.

Must be something else needed; tried weith all three as yes and also with LIMIT GUEST ACCESS as NO.

Does https://azure.microsoft.com/en-us/documentation/articles/active-directory-create-users/ help?

I see the settings (still in Preview) by going to the portal, selecting the AAD instance for my tenant, and then selecting the Configure tab. The User Access settings are towards the end. I don't think you need to go near these settings because the default values should allow guest access.

Thanks TOny, I have that all set - as you said they were already set. I could not find those settings in the new portal, only the old portal.

(side note - thanks for the screen shot you attached. I only noticed it when coming back to reply. They don't feature very prominently do they.... Attached images should really show a thumbnail)

I am seeing 'All/Owners/Guests' in the group I've set up, but still get a warning that only individuals from within the organisation can be added when I try to add someone external.  

I realise it might be a number of days away. Is there any visual indication to know external group membership is active on your tenant, or do we just keep trying until it works?

What does your AAD policy for groups show when you look at the settings using 

Get-MsolAllSettings | ForEach Values?

You need:

• AllowToAddGuests is True, meaning that guest users are allowed for this tenant.
• AllowGueststoAccessGroups is True, meaning that guest users can access Office 365 Groups.

I have been using this feature for the last month or so with a lot of success. For instance, with a team of people from Microsoft and other companies to build the "Field Guide to Office 365 Groups" session for Ignite. The "flighting" of the feature to First Release tenants takes time as multiple components have to be in place for everything to work and when they all come together, you'll be able to use guest access as documented.

FWIW, I have an article coming on Petri.com today that describes my experience of using guest access and some of the twists along the way. You might get some value from that text. And of course, we will have an update for the Office 365 for IT Pros eBook that covers this topic in depth. I think we'll release an update for the PDF, EPUB, and Kindle versions of the book next Monday.

TR

In powershell I can get Get-MsolPartnerInformation and various other cmdlets to work, but not Get-MsolAllSettings. Is there a module that I need to install?

I'll keep an eye out for your post

Aargh :( Why does posting a reply fail so often. "Correct the hilighted errors and try again" - there aren't any!!

You need version 1.1.130.0 of the Azure AD PowerShell module to maintain AD policies like the one used by Office 365 Groups...

To test what you have:

[PS] C:\> (Get-Item C:\Windows\System32\WindowsPowerShell\v1.0\Modules\MSOnline\Microsoft.Online.Administration.Automation.PSModule.dll).VersionInfo.FileVersion

(all explained in chapter 5 of Office 365 for IT Pros...)

Man this reply editor is buggy. It never works

Ah even better, it tells you it isn't working - but it is. Sorry for the spam people.

Thanks for your help Tony. Now I'm getting an authentication error, regardless of which admin username and password I use. 

IN AD CONFIGURE USER ACCESS, should Limit guest access be ON or OFF - seems it should be OFF?