Apr 09 2019
05:56 AM
- last edited on
Jan 14 2022
04:46 PM
by
TechCommunityAP
Apr 09 2019
05:56 AM
- last edited on
Jan 14 2022
04:46 PM
by
TechCommunityAP
We have a situation where several of our users needs to work logged in with their accounts that they have with some of our clients (i.e on our clients O365 - not ours). This means that in order to gain full access to our internal resources they need to switch between client account and internal account.
Many find this really awkward and time consuming.
The best thing for us would be to be able to create accounts in our AAD that mirrors permissions of their internal accounts - but use the client account for authentication and thus enabling access to all features in both environments at the same time?
Is there any way to achieve this (or something similar)?
If not, what is best practice for user who need to work with two or more O365 tenants simultaneously?
May 06 2019 09:15 AM - edited May 07 2019 01:23 AM
@Erik Wettergren At the moment your requirement cannot be met. Microsoft handles guest accounts on a tenant differently to a tenant account. This is VERY obvious when you sign into a SharePoint site with both a guest and tenant account (even when both accounts have the same access rights).
At the moment what we do is to create two user profiles in a well known web browser that rhymes with dome. Doing this you can separate the two identities on a browser level. This only works if you are predominantly using web based tools. For Desktop applications it will not work.
May 08 2019 08:02 AM