Internal member: These users are generally considered employees of your organization.If you have internal guest users like these, you can invite them to use B2B collaboration instead so they can use their own credentials, allowing their external identity provider to manage authentication and their account lifecycle.
Internal guest: Before Azure AD B2B collaboration was available, it was common to collaborate with distributors, suppliers, vendors, and others by setting up internal credentials for them and designating them as guests by setting the user object UserType to Guest. The user object created in the resource Azure AD directory has a UserType of Member. This scenario is common in organizations consisting of multiple tenants, where users are considered part of the larger organization and need member-level access to resources in the organization’s other tenants. External member: This B2B collaboration user has an account in an external Azure AD organization or an external identity provider (such as a social identity) and member-level access to resources in your organization. The user object created in the resource Azure AD directory has a UserType of Guest. This B2B collaboration user has an account in an external Azure AD organization or an external identity provider (such as a social identity), and they have guest-level permissions in the resource organization. External guest: Most users who are commonly considered external users or guests fall into this category. The following table describes B2B collaboration users based on how they authenticate (internally or externally) and their relationship to your organization (guest or member). This article discusses the properties of this user object and ways to manage it. B2B collaboration user objects have limited privileges in your directory by default, and they can be managed like employees, added to groups, and so on. A user object is created for the B2B collaboration user in the same directory as your employees. 
This B2B collaboration user can then access the apps and resources you want to share with them. With B2B collaboration, an external user is invited to sign in to your Azure AD organization using their own credentials. B2B collaboration is a capability of Azure AD External Identities that lets you collaborate with users and partners outside of your organization.
0 kommentar(er)
