Do you know what is B2B direct connect user used in Microsoft Teams?
Azure AD B2B direct connect is a new feature (currently in preview) that lets you setup a trust relationship with another Azure AD (or so-called federated trust before in the active directory, who remembers it and how we managed it before?).
This currently works with the Microsoft Teams shared channels.
What do you get with it? Well when trust relation (or federation) is established the B2B direct connect user has the SSO to access resources outside the home organization. This means that the user will authenticate on the home Azure AD and access resources outside his home tenant.
This sounds awesome, because we are not required to create guest users anymore. But the big problem is if we allow entire tenant in our home Azure AD, we don’t know who are the users who are accessing data inside our home tenant.
Is this a challenge for you, or you don’t care who those users are?
