Feb 07 2018
03:57 AM
- last edited on
Jan 14 2022
04:47 PM
by
TechCommunityAP
Feb 07 2018
03:57 AM
- last edited on
Jan 14 2022
04:47 PM
by
TechCommunityAP
We are building a enterprise product, and expect a lot of customers, to not have active directory of their own. We plan to use AAD as our IAM provider. We plan to create a master AAD for the product, and then invite users of each customer (tenant) as external users to the master AAD, using their business email id. Each set of users for a given customer, will be added to an external group for manageability. Would this be the right approach, for supporting multi-tenanted IAM for a product hosted in Azure?
Feb 26 2018 12:41 AM
As I understand, Azure AD B2B maps to scenario you are looking for. You can provision users in Azure AD B2B from external companies using invitations , setup external groups for them in Azure AD B2B and based on membership grant access to application.