Problem
How to Create Guest Users in Entra ID through SailPoint ISC
Diagnosis
Initially, we created only normal users through Entra ID connector from ISC but Entra ID connector also provides a capability of creation Guest Users as well. Refer the solution for further details.
Solution
Pre-Requisites
- Source with Entra ID connector is created in SailPoint ISC.
- Connectivity b/w VA and Entra ID tenant is SUCCESS.
- Test Connection b/w ISC and Entra ID tenant is SUCCESS.
- All the Pre-Requisites as per connector documentations are completed in Entra ID tenant.
The Application which we will register for this integration in Entra ID should have below permissions.
Development Steps
- Login to ISC as administrator
- Go to Admin à Connection à Source
- Search and Open the source named as : Entra ID
- Go to : Create Account section.
- Below is the list of attributes which you have to setup for successful creation Guest accounts through invites in Entra ID.
| Attribute Name | Potential Attribute Value |
|---|---|
| accountType | Guest User B2B |
| invitedUserEmailAddress | Email address of the user |
| inviteRedirectUrl | The URL that the user will be redirected to after redemption |
| sendInvitationMessage | true/false |
| customizedMessageBody | Customized message text that can be added in the invitation email for the B2B Guest User |
| invitedUserDisplayName | The display name of the user being invited |
- Save the configurations
- Make sure that Provisioning Timeout of Entra ID source is more than 120 seconds.
- Test the provisioning of the Guest Entra User in Entra ID