This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 18%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EIB%3C/text%3E%3C/svg%3E)
Hello,
Guest access is configured in our Microsoft 365 tenant and works correctly, except for users with Google Workspace accounts using @fabrikam.com domain (example).
No federation is configured in our tenant.
One Time Passcode is configured in our tenant.
We need to explicitly allow a domain in Entra External collaboration settings : Fabrikam domain is allowed
This is the current flow :
For the step 4, we expect Fabrikam user to be redirected to a page to send the OTP code (instead of being redirected to a page to enter password), as explained in the Microsoft documentation “Invitation Redemption flow” :
https://learn.microsoft.com/en-us/entra/external-id/redemption-experience#invitation-redemption-flow
FYI, we also test Fabrikam users to access to another test tenant, and we have same behavior.
Could you please help us to allow Fabrikam external users (using Google Workspace accounts) to access our tenant with One Time Passcode (OTP) (we don’t want to configure any federation).
Thanks,
Regards,
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 20%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Just checking in to see if the below answer helped. If this answers your query, please don’t forget to click "Accept Answer" and Up-Vote for the same, which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Hi @I. BACHAR
Following up to see if the below answer was helpful. If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.
Hi @I. BACHAR
Thank you for posting this in Microsoft Q&A.
OTP (one-time passcode) will work on below scenarios.
Based on the information you provided, it seems that you have set up One Time Passcode in your tenant. Can you please check remaining scenarios?
For your reference: When does a guest user get a one-time passcode
The redemption process verifies whether the user possesses a home directory or not. In the event that the user's home directory is recognized, the user is directed to the relevant identity provider for authentication. If no home directory is detected and the email one-time passcode functionality is activated for guests, a passcode is dispatched to the user via the provided email address.
Thanks,
Navya.
Hope this helps. Do let us know if you any further queries.