Azure External Identities
Full-Access Members Only
Sorry, this lesson is only available to Server Academy Full-Access members. Become a Full-Access member now and get instant access to this and many more premium courses. Click the button below and get instant access now.
Instructions
Q&A (0)
Notes (0)
Resources (0)
Saving Progress...
Resources
There are no resources for this lesson.
Notes can be saved and accessed anywhere in the course. They also double as bookmarks so you can quickly review important lesson material.
In this lesson, we'll explore how Azure External Identities enable secure interactions with users outside your organization. Azure offers robust solutions for managing and collaborating with external identities, ensuring secure access to your resources.
Introduction to External Identities
An external identity refers to any person, device, or service that is not part of your organization. Microsoft Entra External ID encompasses all the methods you can use to securely interact with these external users. Whether you want to collaborate with partners, vendors, or customers, Azure provides the tools to share resources and manage access effectively.
Key Capabilities of External Identities
The capabilities of Azure External Identities include Business to Business (B2B) collaboration, B2B direct connect, and Microsoft Azure Active Directory Business to Customer (B2C).
Business to Business (B2B) Collaboration
B2B collaboration allows external users to use their preferred identity to sign in to your Microsoft applications or other enterprise applications. These users are typically represented in your directory as guest users. This feature is ideal for collaborating with partners, distributors, and suppliers.
B2B Direct Connect
B2B direct connect establishes a mutual, two-way trust with another Microsoft Entra organization, enabling seamless collaboration. Currently, this feature supports Teams shared channels, allowing external users to access your resources from within their home instances of Teams. These users are not represented in your directory but can be monitored in Teams admin center reports.
Microsoft Azure Active Directory Business to Customer (B2C)
Azure AD B2C is designed for developers creating consumer-facing apps. It allows you to manage your customers' identity experiences, letting them use their preferred identity providers like Google or Facebook to sign in. This service is ideal for publishing modern SaaS apps or custom-developed apps to consumers and customers.
How External Identities Work
With External Identities, external users can bring their own identities. Whether they have a corporate, government-issued, or unmanaged social identity, they can use their own credentials to sign in. The identity provider manages their identity, while you manage access to your apps with Microsoft Entra ID or Azure AD B2C.
Benefits of External Identities
Practical Application
To enable collaboration across organizational boundaries, you can use the Microsoft Entra B2B feature. Guest users from other tenants can be invited by administrators or other users. This capability also applies to social identities such as Microsoft accounts.
To ensure appropriate access for guest users, you can conduct access reviews. These reviews allow guests or decision-makers to recertify the guests' access, ensuring only those who need access retain it.
Server Academy Members Only
Sorry, this lesson is only available to Server Academy Full Access members. Become a Full-Access Member now and you’ll get instant access to all of our courses.
