Sign in
Microsoft.com
 
Microsoft
 
 
 

none
Azure AD Cross Tenant RRS feed

 , 
 > 

  • Question

  • Question
    Sign in to vote
    1
    Sign in to vote

    Hello everyone,

    I have a question regarding 2 tenants Federatio.
    I would like to give access from one tenant to the other. In particular, Exchange Online...

    Example: User Tenant 1 must have full access (Exchange Online) to a user from Tenant 2

    Is the following procedure correct: Exchange Online cross-tenant authentication

    greetings

    Tuesday, November 22, 2022 4:10 PM
    |

All replies

  • Question
    Sign in to vote
    2
    Sign in to vote
    Those are mine and the alter ego is from this account and not the government side. So the two user agent’s where setup by me.
    Tuesday, November 22, 2022 6:10 PM
    |
  • Question
    Sign in to vote
    3
    Sign in to vote

    Follow these steps to configure customized settings for specific organizations.
    Sign in to the Azure portal using a Global administrator or Security administrator account. ...
    Select External Identities, and then select Cross-tenant access settings.
    Select Organizational settings.
    Select Add organization.

    Regards,

    Rachel Gomez

    Monday, December 12, 2022 5:10 AM
    |
  • Question
    Sign in to vote
    2
    Sign in to vote

    Yes, cross-tenant authentication for Exchange Online can be used to give users from one tenant access to Exchange Online resources in another tenant. This can be done by configuring a trust between the two tenants, which allows users from one tenant to be authenticated by the other tenant's Active Directory. Once the trust is established, you can then use Exchange Online remote sharing features to give users from one tenant access to the other tenant's Exchange resources, such as mailboxes and calendar items.

    Thanks

    Wednesday, January 25, 2023 12:13 PM
    |
  • Question
    Sign in to vote
    1
    Sign in to vote
    Yes, the Exchange Online cross-tenant authentication procedure is the correct way to grant a user from one tenant full access to a user from another tenant in Exchange Online.

    To achieve this, you need to set up cross-tenant permissions using the following steps:

    Connect to Exchange Online PowerShell for both tenants.

    Grant the user from Tenant 1 full access permissions to the mailbox of the user from Tenant 2 using the following command:

    Add-MailboxPermission -Identity user@tenant2.com -User user@tenant1.com -AccessRights FullAccess -InheritanceType All

    In Tenant 2, grant the user from Tenant 1 the necessary permissions to access the mailbox using the following command:

    Add-RecipientPermission -Identity user@tenant2.com -Trustee user@tenant1.com -AccessRights FullAccess -Confirm:$false

    After granting the permissions, the user from Tenant 1 can access the mailbox of the user from Tenant 2 using Outlook on the web or Outlook desktop by adding the mailbox to their account.

    It is important to note that cross-tenant permissions can only be granted by a global administrator or an Exchange administrator with appropriate permissions in both tenants. Additionally, cross-tenant permissions can take up to 24 hours to take effect, so it is recommended to plan accordingly.
    Thursday, February 23, 2023 1:38 PM
    |