How can we improve Azure Active Directory?

← Azure Active Directory

B2B - Expose source tenant UPN and ObjectId in the guest tenant

There is currently no immutable, unique property to match a user in the source tenant to the guest user in a guest tenant with PowerShell (AzureAD, MSOnline) or Azure AD web GUI. The unique identifier which I believe is the ObjectId from the source tenant, is not exposed in the guest tenant.

UPN on a guest user can be changed to <anything>@<anyverifieddomaininguest_tenant>, and thus is NOT a unique identifier.

Request: Expose a guest user ObjectId and UserPrincipalName from the source tenant as attributes/ properties on the guest user object.

9 votes
Sign in
(thinking…)
Sign in with: Microsoft
Forgot password?
Create a password
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Olav Rønnestad Birkeland shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

2 comments

Sign in
(thinking…)
Sign in with: Microsoft
Forgot password?
Create a password
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • peter commented  ·   ·  Flag as inappropriate

    Also, it would be good to have a view of the .onmicrosoft.com source domain of the guest users somewhere and not just log tenantID

  • DanM commented  ·   ·  Flag as inappropriate

    The guest tenant needs visibility to the UPN in the source tenant. The UPN must be used when logging into B2B services (such as Power BI) and the resource tenant has no visibility into the user's UPN to assist them in access troubleshooting.

Azure Active Directory: B2B

Categories

Feedback and Knowledge Base

(thinking…)
Hosted by UserVoice