Dec 06 2018
01:53 AM
- last edited on
Jan 14 2022
04:46 PM
by
TechCommunityAP
Dec 06 2018
01:53 AM
- last edited on
Jan 14 2022
04:46 PM
by
TechCommunityAP
Hi there,
I am invited to join a MS Teams group from another organization. when I try to redeem the invitation , it asks me create a password and display name rather than allowing me to Sign in using my Microsoft Account (Since my organisation does not have a Azure AD yet).
But when I try to go through by creating a password, then I get an error that:
"We cannot create a self-service Azure AD account for you because has <orga name> disabled self-service account sign-up by email validation. Ask admin to enable EmailVerified users or create an account for you."
My organisation does not have any Azure AD and I have a Microsoft Account created using my official email id.
What is going on here? Any help is much appreciated 🙂
Dec 12 2018 07:45 AM
Hi Unnie,
Please check with the company inviting you to collaborate, this error occurs when external collaboration has been restricted.
Settings to query:
Apr 01 2019 01:19 AM - edited Apr 01 2019 01:20 AM
@ThinkSync Please show exactly where to set this permissions.
I can't find that in Azure under Groups.
May 26 2019 09:42 AM
Hi@Tvermoes exact info:
Sign in to https://portal.azure.com
Click Azure Active directory in the left pane.
Under Manage, click User settings.
Under External users, click Manage External collaboration settings.
Nov 06 2019 04:25 AM
Dec 16 2019 04:04 PM
I have exactly this same problem, but my domain is on GSuite! There is no such collaboration setting.
What to do ?
Jan 03 2020 02:15 AM
That is not correct.
They have already received an invite, so their external collaboration settings are fine otherwise they would not have been able to send the invite in the first place.
The issue is because the user of the receiving organisation has not allowed them self service sign up. Probably because they either don't yet have their domain in Azure AD or they do but have not setup that person in Azure AD yet.
The receiving organisation need to action this, either allow self service sign up for their Azure AD domain, create the persons account in their Azure AD or if they have local AD they could sync their local AD with Azure AD to automatically create the accounts in Azure AD.
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sync-whatis
Jan 03 2020 07:15 AM
@a-yates True, but the problem is my org do not have Azure AD , so naturally I must be asked to create a Microsoft account for my email or use my existing Microsoft account attached to that email. But strangely, this does not happen, am suspicious that maybe some IT PRO in our org created a dummy Azure Ad with my org name and probably added it with our org domain.
Jan 03 2020 07:27 AM
Hi @Unnie, about "some IT PRO in our org created a dummy Azure Ad with my org name and probably added it with our org domain" I assuming that you are referring a public domain, if so, you can check that consulting the DNS records (ie https://dnschecker.org) and if the domain has TXT record like MS=ms######## <- The '#' is just a numbers, the domain has been added as a custom domain to Azure services like Azure AD.
Jan 03 2020 07:43 AM