Allow a guest user to be added to GCC/Public Azure AD that exists in a national cloud (GCC-High/DOD). Utilize the same OTP method that allows non-Microsoft users to authenticate.

Currently the Azure AD guest account displayname, which is set by the inviter (in this case admins from the tenant) will change when the invitee accepts the invite. Since this displayname is usually the primary way for users to identify others and names are not unique, this creates confusion. Is it possible to add a method to set the invite to not change the displayname after the invite is accepted?

AAD should be able to sign SAML requests sent to a third-party IDP, especially if the IDP metadata suggests it (WantAuthnRequestsSigned="true"). Either auto-configure request signing based on the metadata and/or allow the admin to toggle request signing on/off.

Some application require a setup process, the first time a user signs in.
It would be great if we can start the process before we redirect the user.
Or adding a the user in the specific security group.
This way we can fill up the myapplications page dynamically.

I know you can handle this also at login, but that means checking every log in, which is overkill.

When you login to azure portal, I can see the application I am trying to log in to, in the account selection screen. (pick account)

But with my own application this is not the case.
This information would help inform our users.

After guest user invite the following user update via MS Graph (PATCH) is not able to query the user sometimes after 30 seconds. The reason is that invite component perform the invite async. The only solution is manage retries in GET/PATCH.

The proposal is to allow update an user in same DC where the user was invited first.
For example in the invite to return SessionID pointer, that using it the following PATCH will be done, and it will allow to update user properties faster and w/o 30 seconds of retries

When you invite someone from another AzureAD, using the B2B process, only their DisplayName and EmailAddress comes through (both of which are actually provided in PowerShell.
After the guest users which have displayname will be accepted, the displayname of users in resource tenant will be changed into the displayname in home tenant.
I want to fix the displayname of gesut users when I invite the users form another Azure AD.

When I set up a guest user in Azure AD, and they accept the invitation, the external Azure AD rewrites their display name in a scheme that doesn't match either organization's naming convention. As the users accept the invites, the admin has to go back and rewrite the guest's display name. Doing this for massive numbers of users becomes cumbersome. This property should be able to be locked on the inviting AD.

Does the one-time passcode work for all MS products, such as for providng guest access to Teams?

The OTP email that is sent once daily to OTP Azure B2B guests is, quite frankly, ugly. We would like to brand this email with our firm's logo as well as put some friendly language that specifies what application they're trying to sign into so it does not look as much like a phishing email. Please allow us to customize this email and make it more friendly looking as opposed to a very operational security email that may confuse less-than-savvy users.

Guest account registration
When we register a guest account in Azure Active Directory, the text of the autorizations revision is not the same en fr-FR and fr-CA. In fr-CA, the word Photos is plural and this is incorrect and not well received by users. Only the profile photo is accessible. In fr-FR, photo is singular.

I think that, for all languages versions, the text should be more specific saying «Your profile photo» / «Votre photo de profil». Guests don't want to share too much information.

Thanks

Right now if you invite a new guest user through SharePoint with a conditional access policy enabled the guest will get an error the first time they try to setup MFA on the tenant they are invited to. If they try to set it up a second time the error is gone and they are able to setup MFA.

Please fix this issue.

نسيت كلمة السر

Sagar Roy