Sep 14 2018 01:35 AM
Hi,
We are implementing Azure AD b2b collaboration. From 'Access Panel' which is myapps.microsoft.com view, Group Owners can add/delete users within the assigned group only. We have restricted any Guest User access to Azure portal by creating conditional access policy to hide the tenant information.
Our problem is that Group Owners can only add users from Access Panel if we provides directory roles of 'Guest Inviter' and 'User Administrator'. Without User Administrator role access panel view is throwing error. Is this is possible for Group Owners to add their users without the ‘User Administrator’ or with some other appropriate role?. It should be in this way only as we have already provided ‘Guest Inviter’ rights to group owners.
Please help.
Thanks in advance
Email - ankur.a.gupta@capgemini.com
Sep 15 2018 11:07 AM
Hello,
Being a group owner and having Guest Inviter Role should be enough from what I know.
Does the Group Owners have an AAD P1 license assigned ?
As the advanced group features requires all a P1 licence.
I just tested that in my demolab, with an user that is guest inviter and owner of an security group. Invitation from access panel worked fine in that case.
/Peter
Sep 16 2018 01:18 AM
Sep 26 2018 12:12 AM
Hi,
Hi after assigning Guest Inviter role in AAD and P1 license, adding/sending guest invites from access panel did not work. Please help further.
/Ankur
Sep 26 2018 12:12 AM
Hi,
Hi after assigning Guest Inviter role in AAD and P1 license, adding/sending guest invites from access panel did not work. Please help further.
/Ankur
Sep 26 2018 04:10 AM
Hi,
do you have an specific error message, maybe also from the audit-logs of Azure AD ?
Can you provide the Azure Active Directory -> Organizational relationships - Settings ?
/Peter
Sep 26 2018 05:50 AM - edited Sep 26 2018 05:53 AM
Hi Peter,
At this point we don't have access to look at the organizational settings but yes we look into it and update.
As of now the problem occurs while we try to add any users from Access Panel. Screen continuously refreshing and not saving any changes, without any error. We have attached the screenshots for the same. Please refer the screenshot 'NotAbleToAddUsers' on which we are not able to add any users.
Thanks
Ankur
Sep 27 2018 10:40 PM
Hi Peter,
Attached is the External collaboration settings we have done in our Azure AD. If it helps to explain the problem better.
- Ankur
Sep 27 2018 11:49 PM
Hi,
I just tested it again, also with the domain restrictions you have in your settings and it works well.
So I assume that this is either tenant specific error to your or something in your client side.
I would open an support case
/Peter