Do "External" users need a MS Account to access a SharePoint Site to which they've been invited?

Steel Contributor

I have a site in SharePoint Online that I want to invite external users to access. I don't want to share specific files or folders, rather, I want them to be Members of the site. This is a standalone (NOT Group-connected) site. The audience for this site doesn't need the additional functions of a Group, they just want/need a SharePoint site. 

 

While I can't find specific documentation to support this, it seems that those external users need a Microsoft Account of some kind; either an O365 account or some other type (Live, Xbox, etc.). Is this correct?

 

The problem that's occurring is that existing "guest" users (ie: they appear in the Guest Users in our tenant) are being presented with our tenant's sign-in dialog. If they do have a MS account, they can sign in with that successfully. However, if they do not have a MS account, they just get a message that their account can't be found. They are not given the opportunity/prompt/link to create a MS account. 

 

Previously, one user in our org had shared a whole mess of folders and files with these external users from their OneDrive, which explains why they exist as Guests in our tenant. I've convinced them that SharePoint is more appropriate for this because the content is "default shared" to that group. That is, rather than sharing individual links as they do now, the external folks could simply go to the SharePoint site. Unfortunately, the sign-in issues this is presenting are making the transition difficult and I'm trying to make sure that I fully understand how this is supposed to work.

 

FWIW, for the "External sharing" settings of the SP Site, I've tried both "New and existing guests" and "Anyone". The behavior seems to be the same regardless.

 

--

Chad Kealey

Drexel University IT

5 Replies
You’ve always had to have some kind of authentication for access SharePoint sites so yes they do need an account. Last time I checked on the sign in screen is a link under the login to create a new one.

Your only non link option would be sharing files and using anyone links and you can now password them but this would only work for files and folders.
This is going to be solved with the Azure B2B integration when sharing any kind of SPO resource, also SPO sites...Azure B2B is currently in preview, so I recommend you to try it: https://techcommunity.microsoft.com/t5/Microsoft-OneDrive-Blog/OneDrive-Roadmap-Roundup-June-2019/ba...
All, your right I didn't notice the whole "One time passcode" for sites part that this will enable.

As usual, @Chris Webb & @Juan Carlos González Martín are correct :)

 

If you share only the site with an external user, it should go through a legacy invitation flow where the recipient is asked to either pick a sign-in with either an AAD/M365 account or an MSA account. Or, if they don't have either, they can create a new MSA account. 

 

All that being said, the flow is definitely a little on the tough side for many end users which is why it is being replaced by the new Azure B2B integration flow which you can try out now via the preview (which Juan linked). Let me know if you have other questions!

 

Stephen Rice

OneDrive Program Manager II

It seems with B2B you still need to have a guest. Not very user friendly when you've gor a lot of external partners.