New Microsoft Azure AD B2B Features Now in Preview

Microsoft recently announced new features for its Azure AD B2B Collaboration service. As explained in my earlier blog post, ‘How to Manage Partner Identities Better With Azure AD B2B’, this service offers a secure and hassle-free way of authenticating your partner identities so that they can collaborate with you.

Authentication is based on corporate identities being stored in Microsoft Azure Active Directory, but doesn’t require your partner identities to belong to an existing Azure AD tenant.

Now we’re excited to share the latest B2B updates from Microsoft, including:

  • The ability to invite any email address (not just corporate addresses)
  • Invitation API
  • Multi-factor authentication
  • Auditing and reporting

 

What’s new in Azure AD B2B?

UX enhancements to the B2B admin experience within the Azure Portal

These enhancements include the ability for administrators to invite partner users either simply to the AAD directory, or to a group or an application within the tenant.

A screenshot showing a new feature in Azure AD B2B which allows the invitation of partner users to the AD.

Ability to invite a partner user with ‘social’ email

Previously, B2B invites silently failed if (for example) you invited someone with a Hotmail account. Now, you can invite any email address, although ‘social’ email users such as Hotmail users are taken through an MSN/Microsoft account creation when they accept the invitation.

Branded invitation emails

Instead of being from the “Microsoft Services Team”, the new invitation emails come from the user responsible for sending the invite, “via Microsoft”, which makes more sense from the recipient’s point of view.

They are also formatted to give a better overall look and feel and one which is more aligned to the brand of the host organisation.

Screenshot showing a branded invitation email created in Azure AD B2B.

New branded invitation email

Invitation APIs

APIs give developers the power to enhance and customise the partner onboarding experience. For example, the invitation could be part of a complex workflow, or the email could be customised beyond the standard branded email.

Multi-Factor Authentication

This new preview adds the ability to require and provide MFA for B2B guest accounts, so that the security measures provided to your organisational accounts can be extended to partner users.

Auditing and reporting

Microsoft has now introduced much better reporting across all users, internal and external, with filters for audit logs so that you can dig into the relevant information.

Screenshot showing the new audit filtering capability within Azure AD B2B.

New audit filtering

 

Conclusion

These changes are now in public preview, but are bound to be very much in-demand as organisations require more from their cloud computing platforms.

To see Azure AD B2B in action, watch a recording of our webinar: ‘Discover the Potential of Microsoft Azure AD B2B Collaboration and B2C’.

To find out more about B2B and explore the potential benefits of deployment within your business, book onto one of our CIAM workshops.