Licensing Changes for Azure AD External Identities

Do you want to check out my last collaboration with the spanish magazine “CompartiMOSS“, I’am talking about the changes in licensing for Azure AD External Identities

I hope you enjoy it!

How to check if an external user has accepted the invitation

From time to time, I receive calls from my customers saying that they send invitations from SPO to external users, but they claim that they did not receive nothing. This post will try to clarify the process, and how is it possible to check the user invitation status.

As you know, every invitation made into O365 (Teams, O365 Groups, SPO…) relies in Azure Active Directory, so our source of information will be there. So what are the steps that we need to follow?

The important thing here, is the source field. If the source field shows invited user, it means the user has not accepted the invitation. If that is the case, than you can click on resend invitation and this will trigger another invite for the user to redeem

inv

Once the user has redeemed the external user invite, you can check the source field, because depending on the Identity Source, the field will be updated regsarding the IS.

In this case, the user has been invited to a Microsoft Account (@outlook, @hotmail)

inv1

In this other case, the user has been invited from an Organization Account (note that the source is External Azure Active Directory)

inv2

That’s all!

 

What happens when external sharing is enabled?

Imagine that you’re in a project where external collaboration is needed, but first, you want to know what exactly happens when a document, site or whatever is shared with external users (users from other company, let’s say).

Firstly, someone has to send an invitation to this external user to collaborate. You have many options to select, to requiere wether user sign in or not

e2.PNG

Secondly, the invitation arrives to the user, and he has to accept it.

e1.PNG

Take into account that these kind of invitations remains in the request list in the site, so any admin could reject the invitation in the meantime.

e3.PNG

Once the user, has accepted the invitationhe could access to the site with the permissions given (full control, contribute, etc…). For example, if you share a document with an external user with the permission “Full Control”, an entry is created in the “Team Site Owners” inside the site. So, you can revoke the acess by removing the user from the Owners group.

e4.PNG

that’s all! Next day I will cover what happens with other things!

Cheers!