Azure Active Directory Guest Users

MS Azure Active Directory (and MS 365) supports inviting external users to an organizations' directory.

This article explains how grant these Guest Users

• access to the XplicitTrust Network Access Command Console
• access to use only the Xplicit Trust Network Access Agent.

The topic of external identities in Azure AD and inviting external users into an organizations' Azure AD is covered in various articles over at Microsoft Learn. Here are two articles that cover the concept of Guest Users and how to invite external users:

• External Identities in Azure Active Directory
• Add a guest user and send an invitation

Managing guest user access

XplicitTrust Network Access Agent

After inviting an external user, assign the Management.User role following the instructions at Managing Roles

The Management.User role grants the user the right to log in with the XplicitTrust Network Access Agent and access Assets according the the configured Policies.

To log in with a Guest User the Domain of the XplicitTrust Tenant has to be configured using the Settings -> Advanced section in the Agent.

XplicitTrust Management Console

After inviting an external user, assign the Management.Admin role following the instructions at Managing Roles

The Management.Admin role grants the user the right to log in with the XplicitTrust Network Access Management Console.

To log in with a Guest User the Domain of the XplicitTrust Tenant has to be specified using the Advanced switch on the log in screen.