在 Azure Active Directory 租户中向来自合作伙伴组织的用户授予权限Grant permissions to users from partner organizations in your Azure Active Directory tenant

Azure Active Directory (Azure AD) B2B 协作用户已作为来宾用户添加到目录,默认情况下目录中的来宾权限会受到限制。Azure Active Directory (Azure AD) B2B collaboration users are added as guest users to the directory, and guest permissions in the directory are restricted by default. 企业可能需要某些来宾用户来填充组织中的较高特权角色。Your business may need some guest users to fill higher-privilege roles in your organization. 要支持定义较高特权角色,可根据组织需要将来宾用户添加到所需的任何角色。To support defining higher-privilege roles, guest users can be added to any roles you desire, based on your organization's needs.

如果将目录角色分配给来宾用户,则会向来宾用户授予该角色附带的额外权限,包括基本读取权限。If a directory role is assigned to a guest user, the guest user will be granted with additional permissions that come with the role, including basic read permissions. 请参阅 Azure AD 内置角色See Azure AD built-in roles.

默认角色Default role

显示默认目录角色的屏幕截图

全局管理员角色Global Administrator Role

显示全局管理员角色的屏幕截图

受限制的管理员角色Limited Administrator Role

显示受限管理员角色的屏幕截图

后续步骤Next steps