Allow an Application Service Principal to be added as a guest in other tenants
We manage multiple tenants across our extended organiation and would like to have a single application service principal to do so rather than having a separate service principal in each tenant.
The work around is to use a standard user account but we would prefer not to do it this way. Since service Proncipals don’t have UPNs, there doesn’t seem to be a way to invite them via the B2B guest invite API.
Scott Egan commented
The idea is not to have the app run in multiple tenants, but across them.
Matt Cowen commented
What I think you need to do is create a "multi-tenant" application in one of the AAD tenants. Then provision the application in those other tenants. You need to ensure you whitelist the tenants that can access your application to just those that you own