How can we make Microsoft Teams better?

← Public

Solution for guests accounts with an organisation account without Office365 tenant to be able to login at teams.microsoft.com

I have created several guest accounts following the instructions here:

https://docs.microsoft.com/en-us/microsoftteams/guest-access

Basically,


  1. Enabled Guest Access in Office365 Admin Center


  2. Added guest account through Azure Active Directory


a. Guest account received email Azure AD "You're invited to the organization"

b. Guest follows the "Get Started" link in the email to create a password


  1. Added guest to a Team through Microsoft Teams desktop application

a. Guest account received email Teams "You have been added to a team in Microsoft Teams"

b. Guest follows the "Open Microsoft Teams" link in the email to be sent to teams.microsoft.com

c. Guest is redirected to login.microsoftonline.com
d. Guest logins in using email/password from #2b

e. Guest is redirected to the Teams page and is able to work.

--

When the Guest tries to login directly to Teams - either through teams.microsoft.com or the Teams desktop application - they are redirected first to a login page (login.microsoftonline.com), then after login to an error page:

https://teams.microsoft.com/_#/licenseError?errorCode=UserLicenseNotPresentForbidden

The Guest can still login/access Teams following the "Open Microsoft Teams" link in the #4b email.

Workaround

If the Guest adds the "tenantId" indicated in the #4b/Open Msft Teams email to the Teams URL, for example: https://teams.microsoft.com?tenantId=1234567-89ab-cdef-0123-456789abcdef


  1. Guest is redirected to login.microsoftonline.com


  2. Guest logs in using username/password


  3. Guest is redirected back to https://teams.microsoft.com/_?tenantId=1234567-89ab-cdef-0123-456789abcdef


  4. Guest can now access the Team (without the UserLicenseNotPresentForbidden error)


This workaround only works through the Browser - it does not work through the Teams Desktop App, as it is not possible to include the requisite "tenantId" to login. Using the Desktop App always fails with UserLicenseNotPresentForbidden.

When the Guest is logged in using the correct "tenantId", the Teams menu (in the Browser) looks like this:

microsoft-teams-menu.png

If the Guest clicks on the other account under "Your accounts" (abcdef-0123-4567-89ab-cdef012345), the Guest is redirected to the UserLicenseNotPresentForbidden error page.

microsoft-teams-userlicensenotpresent.png

It seems that a Guest has been assigned two different "tenantId"s (or Azure Object IDs), the first is the one created in step #2, the second is the one created in step #4. When the Guest tries to login without specifying the tenantId, login.microsoftonline.com defaults to the tenantId in #2 (which isn't authorized to access Teams).

I see no place in Teams, Office365 Admin Center, or Azure AD to manage these separate 'tenantId's or allow the Guest to login to Teams using the Desktop App.

149 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Jorik Polhuis shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →
needs your feedback  ·  Warren responded  · 

If anyone is still hitting this issue, please respond in the comments section of this topic and let me know!

Thanks!
-Warren

59 comments

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Luuk commented  ·   ·  Flag as inappropriate

    Also experiencing this issue, it's really annoying and makes us look unprofessional when interacting with clients.

  • Anonymous commented  ·   ·  Flag as inappropriate

    I have been added as a Guest to a company's Teams. Since then I can no longer login to Teams using the Desktop App. The login page always redirects to the Guest login page. Hence the Desktop App is now useless. (Desktop for Mac)

  • Chadini Trivedi commented  ·   ·  Flag as inappropriate

    I still have the same issue in my enviroment. Even though I have created guests accounts in my enviroment and sent invitation , they still are experiencing issues. at first they can login but then it shuts off and then at times they can not relogin to our tenant.

  • Anonymous commented  ·   ·  Flag as inappropriate

    On web, it forces a logout, even when logged into Microsoft account wanted. Then you can choose a tenant/domain.

    But on Android, it doesn't work in the app at all. Login just plain fails due.

  • Lot commented  ·   ·  Flag as inappropriate

    When I open the guest link (I already have an organisational teams) but it won't show in my teams... It just keeps opening my own teams. In the application AND on the web!

  • RCross commented  ·   ·  Flag as inappropriate

    This problem still happens with both android and apple clients. Have this issue currently and it's causing communications issues with a customer currently. We had to create a completely separate domain and Free Teams login account with separate credentials just to communicate with the client. Please fix this.

  • Anonymous commented  ·   ·  Flag as inappropriate

    Yes this is a problem in android device. I cannot join the team as guest of an org. It's my own org and the guest account was created as a test, and the error occurs

  • Anonymous commented  ·   ·  Flag as inappropriate

    Unable to join
    Looks like the meeting URL is incorrect. Please check the URL and try again.

← Previous 1 3

Forum Home

Reference Information for Teams

Public: Guest Access

Categories

Feedback and Knowledge Base

(thinking…)

More Teams Information