I in my on-prem v5.0 community Zammad, once configured a Microsoft 365 app, I can only add email accounts that belong to the same MS Azure/MS365 tenant, where I configured the Microsoft 365 app.
Trying to add MS365 email accounts from other tenants - the browser navigates to url: https://login.microsoftonline.com/[currently_added_tenant_tld]/oauth2/v2.0/authorize?
When providing MS365 account credentials that belong to another MS tenant the MS service throws an error:
Sorry, but we’re having trouble with signing you in.
User account 'firstname.lastname@example.org' from identity provider 'https://sts.windows.net/XXXXXXXXXXX/' does not exist in tenant '[Configure-tenant-name]' and cannot access the application 'YYYYYYYYYYYYYY'(Zammad) in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account.
Supported account types:
Please note that Zammad only supports these account types (App dependent):
> * Accounts in this organizational directory only (Default Directory only - Single tenant)
> * Accounts in any organizational directory (Any Azure AD directory - Multitenant)
> * Accounts in any organizational directory (Any Azure AD directory - Multitenant) and personal Microsoft accounts (e.g. Skype, Xbox)
I need to say that I have configured Zammad in my Azure to allow the most open concept: - Accounts in any organizational directory (Any Azure AD directory - Multitenant) and personal Microsoft accounts
Would you be so kind to share the know-how on how to add email accounts from other MS365/Azure tenants once you have added first MS tenant?