I've just started to use Azure AD B2C and found that we could create both domain accounts ({tenant}.onmicrosoft.com) and local accounts (any email address), which are called as "guest user". What is the difference between the two? Is there any use case in which we should use domain accounts?
Asked
Active
Viewed 1,656 times
0
-
Where do you notice this? Any chance you can share a URL? – spottedmahn Aug 23 '17 at 12:36
-
I noticed this on Azure Portal. It seems that "+New user" button creates domain accounts, and "+New guest user" creates local accounts. https://i.stack.imgur.com/2UiZS.png – nosu Aug 24 '17 at 03:47
-
2I found another question and now I understand that we should not use Users & Groups blade of AAD B2C to create accounts. https://stackoverflow.com/questions/42239075/how-do-you-add-a-user-with-a-local-name-in-azure-active-directory-b2c – nosu Aug 24 '17 at 03:53
1 Answers
1
Is there any use case in which we should use domain accounts?
Yes, when you need to connect over PowerShell. Please see this documentation about 'Configuring delete permissions for your application'.
Note: there could be more scenarios, that is just one that I know of.
spottedmahn
- 14,823
- 13
- 108
- 178