Jul 18 2024 06:20 AM
Dear community,
I have followed this guide to enable the external sharing.
Collaborate with guests on a document (IT Admins) | Microsoft Learn
It is working fine and external guests will use the One-Time code experience when accessing the file.
However, I like to step up and require guest to register so next time it will be required to use MFA to sign in. I followed the following guide to set it up.
Require MFA for guest users with Conditional Access - Microsoft Entra ID | Microsoft Learn
It is not working so far as the guest user continue to access the shared resource using One-time code.
My thinking is that the CAP doc does not match my tenant. For example, in the Doc, it says:
Under Assignments, select Users or workload identities.
My tenant doesn't have it. Under Assignment, it shows "Guest or external users" with six identities. So I selected all of them.
Also, I think this CAP will only work if the guest account is in the tenant. I have checked my "Identity Governance" blade and it says "No guest account".
What am I missing?
Thanks all!
nhtkid