B2B - Expose source tenant UPN and ObjectId in the guest tenant
There is currently no immutable, unique property to match a user in the source tenant to the guest user in a guest tenant with PowerShell (AzureAD, MSOnline) or Azure AD web GUI. The unique identifier which I believe is the ObjectId from the source tenant, is not exposed in the guest tenant.
UPN on a guest user can be changed to <anything>@<anyverifieddomaininguest_tenant>, and thus is NOT a unique identifier.
Request: Expose a guest user ObjectId and UserPrincipalName from the source tenant as attributes/ properties on the guest user object.

2 comments
-
peter commented
Also, it would be good to have a view of the .onmicrosoft.com source domain of the guest users somewhere and not just log tenantID
-
DanM commented
The guest tenant needs visibility to the UPN in the source tenant. The UPN must be used when logging into B2B services (such as Power BI) and the resource tenant has no visibility into the user's UPN to assist them in access troubleshooting.