Awesome explanation! I went to the Microsoft Azure channel to understand B2C and I couldn't understand anything but you cleared all my doubts about B2C. You are the best!😊
The vedio was a given necessary info as mentined on the subject on the vedio title.i have a lot of complexity to understand the concept of b2b and b2c. now there is a emerging clarity😄
Awesome video Sir. It touches all the aspects and also touches all the important points. Before watching this I used to think that social media accounts like Gmail, Facebook etc can be used for B2B invite. Now I am clear that although they can be used to send invite but the user needs a Microsoft account to sign in to the guest tenant.
Very well explained. Finally I know the difference between the two. Thank You John. Also, it rare to see muscular geeks in our industry. A pleasant surprise :D
Hey John, Thanks for the community help you are doing. Your videos are really very good, detail oriented and easy to understand. I have also compelted the Azure Active directory module on Pluralsight. Thank you and keep sharing the knowledge.
John, Its always interesting to watch your Videos as it gives insights about the concepts and helps understand thoroughly. It would be really helpful if you can post videos on VMSS, Application Gateway, Migrating OnPrem VMs to Azure using Site Recovery etc. Thanks in advance. :)
Thanks John, I din't knew I couldn't use my existing AAD for B2C. I quite often have to deal with AIP Labels, some clients want to use it in B2B, B2C or combined. B2B is pretty clear, but a B2C using AIP Labels protecting confidential correspondence, e.g. lawyer to client, is pretty complicated. Lots of clients are looking for an easy solution to circumvent email encryption using x.509 or PGP.
Right B2C is a completely different tenant type today. If you are doing AIP etc that is very much like collaboration in which case those people may be better as guests (B2B) in your tenant as opposed to entries in a separate B2C. Really comes down to the relationship.
@@NTFAQGuy Hi, meanwhile I watched some other of your videos, great presentations by the way. I probably still try to force Azure AD into my perception of the good old AD on prem to find similarities or trying to understand something in Azure I thought to be similar in AD. Your Azure AD Overview opend my eyes a bit and I'm working on more. I will forward your videos to some of my colleagues to benefit from your experience and presentations.
Great explanation John. Your videos are awesome and explains concepts clearly. I however, have a question on Azure AD B2C MFA. Does MFA in B2C is dependent on Azure AD P1/P2 licences or MFA in B2C is a seperate feature which is not dependent on Azure AD P1/P2 or Azure MFA service ? As per MS B2C documentaion, MFA charges for B2C service is given seperately ($0.03 for each SMS/phone event) so i am assuming that MFA in B2C is independent but not confirmed.
Very well explained Thank you. But can we use B2B for giving access to a customer service oriented webapp to a handful of external users who do not need access to my Azure resources? B2B allows me to invite them. The problem with B2C is anyone in the world can create a profile in my AD B2C even though I may be able to restrict their access to my app.
Yes, you could do that. If its limited scope and they are more partners that works. It's really about the end-user and the relationship with them that drives b2b vs b2c for apps.
John Savill - we use B2B accounts extensively. 99% of the time it works fine, but we get some users that suddenly can't login. Sometimes it gives an error the the user doesn't exist in the directly (it does) or that their password is invalid (it isn't). Only way solution I've found is to recreate the account/invite - which isn't a real solution. Any insight?
Hi John - if both partner azuread and company azure ad have mfa enabled, what is the user experience when you send a link to the guest user. Which tenant will challenge the user for a mfa code? I believe the partner tenant will. Correct me if wrong
Hi John, may you plz assist for best possible solution for my scenario... We have two tenants Tenant A - has the Azure AD and have my all internal & guest users. Tenant B - has the Resources (VM) my VM should be able be accessible by azure AD users exist in tenant A. so they can connect to VM using the same credential exist in azure AD Tenant A. how it will be possible?
