How to create a group of guest users in Microsoft Entra ID (formerly Azure AD)

Creating a group of guest users in Microsoft Azure Active Directory (Azure AD) allows organizations to collaborate securely with external partners, vendors, or clients. By defining a guest user group, administrators can efficiently manage access permissions, ensuring that external users have appropriate levels of access to resources while maintaining security and compliance standards.

To create a group of guest users

First, you'll create a group tailored for your guest users, all of whom originate from a single partner company. As they require specialized licensing, it's often more efficient to create a dedicated group for this specific purpose.

1. Access the Microsoft Entra admin center with credentials having at least Groups Administrator privilege.
2. Choose Microsoft Entra ID.
3. Navigate to Groups > All groups > New group.
4. Within the New Group pane:

• Enter the name, email address, and description for the guest users group.
• Modify the Membership type to Dynamic User.

5. Click No owners selected and navigate to the Add Owners pane. Scroll through the list to locate the desired owners. Click on the name(s) to add them as owners to the group.
6. Click Select to save the chosen owners and close the Add Owners pane.
7. Click Add dynamic query within the Dynamic user members box.
8. Within the Dynamic membership rules pane:

• In the Property field, click the existing value and select userType.
• Ensure that the Operator field is set to Equals.
• In the Value field, enter Guest.
• Click the Add Expression hyperlink to include another line.
• In the And/Or field, select And.
• In the Property field, choose companyName.
• Ensure that the Operator field is set to Equals.
• In the Value field, enter Zylker.
• Click Get custom extension properties to input an application ID for retrieving all available custom extension properties to create a rule.
• Once completed, click Save to close the Dynamic membership rules window.

9. To finish creating the group, click Create on the Group pane.

About ManageEngine M365 Manager Plus

M365 Manager Plus is an extensive Microsoft 365 tool used for reporting, managing, monitoring, auditing, and creating alerts for critical incidents. With M365 Manager Plus, you can enhance the administration of your entire Microsoft 365 environment.

• Delegate specific tasks, access to selected reports, or control over specific objects in your environment via Virtual Tenants to your help desk, ensuring tasks are performed without elevating their Microsoft 365 privileges.
• Manage mailboxes, users, groups, sites, and contacts effortlessly in bulk.
• Gain a thorough understanding of your environment in Exchange Online, Azure Active Directory, SharePoint Online, OneDrive for Business, and other Microsoft 365 services with detailed reports.
• Keep tabs on even the most granular user activities in your Microsoft 365 environment.
• Monitor the health and performance of Microsoft 365 features and endpoints around the clock.