My company currently has a few App Services hosted on Azure and needs to assign access to these apps to a few resources from another company. I need to build a small C# MVC app to create these users on our Azure Active Directory (which I am almost finished with). Before continuing, I would first like to understand the basic differences between "Users" and "Guest Users" on Azure Active Directory. Can anyone please explain this to me?
Also, if it helps, these users will not in any way be doing any Azure Portal maintenance. They will simply be accessing two or so of our App Services.
Thank you!
User means your user type is Member. You could check this official document.  
Member: This value indicates an employee of the host organization and a user in the organization's payroll. For example, this user expects to have access to internal-only sites. This user would not be considered an external collaborator.
Guest: This value indicates a user who isn't considered internal to the company, such as an external collaborator, partner, customer, or similar user. Such a user wouldn't be expected to receive a CEO's internal memo, or receive company benefits, for example.
Note: The UserType has no relation to how the user signs in, the directory role of the user, and so on. This property simply indicates the user's relationship to the host organization and allows the organization to enforce policies that depend on this property.
Also, if it helps, these users will not in any way be doing any Azure Portal maintenance. They will simply be accessing two or so of our App Services.
If my understanding is right, you could give roles only to your web app resource group. So, your users only could access this two web app. More information about this please check this link.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With