Microsoft 365 內部租使用者共同作業Microsoft 365 inter-tenant collaboration

假設有兩個組織、Fabrikam 和 Contoso 都有 Microsoft 365 for business 租使用者,而且他們想要在數個專案上共同運作;有些會執行的時間有限,有些則在進行中。Suppose that two organizations, Fabrikam and Contoso, each have a Microsoft 365 for business tenant and they want to work together on several projects; some of which run for a limited time and some of which are ongoing. Fabrikam 和 Contoso 如何讓其人員和團隊能夠更有效率地以安全方式跨不同的 Microsoft 365 承租人進行共同作業?How can Fabrikam and Contoso enable their people and teams to collaborate more effectively across their different Microsoft 365 tenants in a secure manner? Microsoft 365 和 Azure Active Directory (Azure AD) B2B 共同作業,提供了數個選項。Microsoft 365, in conjunction with Azure Active Directory (Azure AD) B2B collaboration, provides several options. 本文說明 Fabrikam 和 Contoso 可以考慮的幾個主要案例。This article describes several key scenarios that Fabrikam and Contoso can consider.

Microsoft 365 內部租使用者共同作業選項包括針對檔案和交談使用中央位置、使用 IM、語音/視頻通話進行通訊,以及保護資源和應用程式的存取。Microsoft 365 inter-tenant collaboration options include using a central location for files and conversations, sharing calendars, using IM, audio/video calls for communication, and securing access to resources and applications. 使用下表來選取解決方案並深入瞭解。Use the following tables to select solutions and learn more.

Exchange Online 協同作業選項Exchange Online collaboration options

共用目標Sharing goal 管理動作Administrative action How to 資訊How-to information
與其他 Microsoft 365 組織共用行事曆Share calendars with another Microsoft 365 organization 管理員可以在 Exchange Online 中設定不同層級的行事曆存取,以允許公司與其他企業共同作業,並讓使用者共用排程 (空閒/忙碌資訊) 與其他公司。Administrators can set up different levels of calendar access in Exchange Online to allow businesses to collaborate with other businesses and to let users share the schedules (free/busy information) with others.
控制使用者如何與組織外部的人員共用其行事曆Control how users share their calendars with people outside your organization 管理員會將共用原則套用至使用者信箱,以控制可與其共用的使用者和授與的存取層級Administrators apply sharing policies to users mailboxes to control who it can be shared with and the level of access granted
設定安全的電子郵件通道,以及控制夥伴組織的郵件流程Configure secure email channels and control mail flow with partner organizations 管理員建立連接器,以將安全性套用至夥伴組織或服務提供者的郵件交換。Administrators create connectors to apply security to mail exchanges with a partner organization or service provider. 連接器會透過傳輸層安全性 (TLS) 來強制進行加密,並允許夥伴傳送電子郵件的功能變數名稱或 IP 位址範圍的限制。The connectors enforce encryption via transport layer security (TLS) as well as allowing restrictions on domain names or IP address ranges your partners send email from.

SharePoint 線上及 OneDrive 商務共同作業選項SharePoint Online and OneDrive for Business collaboration options

共用目標Sharing goals 管理動作Administrative action How to 資訊How-to information
與外部使用者共用網站與檔Share sites and documents with external users 管理員在租使用者中設定共用,或為 Microsoft 帳戶驗證、工作或學校帳戶驗證或來賓帳戶設定網站集合層級Administrators configure sharing at the tenant, or site collection level for Microsoft account authenticated, work or school account authenticated or guest accounts
追蹤和控制使用者的外部共用Tracking and controlling external sharing for end users Business file 物主的 OneDrive,以及 SharePoint 線上使用者設定網站與檔共用,並建立追蹤共用的通知OneDrive for Business file owners and SharePoint Online end users configure site and document sharing and establish notifications to track sharing

商務用 Skype 協同作業選項Skype for Business collaboration options

共用目標Sharing goal 管理動作Administrative action How to 資訊How-to information
商務用 skype Online-與其他商務用 Skype 使用者的 IM、通話及顯示狀態Skype for Business Online - IM, calls, and presence with other Skype for Business users 管理員可以為商務用 Skype Online 使用者啟用 IM、進行音訊/視頻通話,並查看其他 Microsoft 365 承租人中的使用者狀態。Administrators can enable their Skype for Business Online users to IM, make audio/video calls, and see presence with users in another Microsoft 365 tenant. 允許使用者連絡外部商務用 Skype 使用者Allow users to contact external Skype for Business users
商務用 skype Online-使用 Skype (消費者) 使用者的 IM、通話及顯示狀態Skype for Business Online - IM, calls, and presence with Skype (consumer) users 系統管理員可以讓商務用 Skype Online 使用者使用 Skype (使用者) 使用者的 IM、通話及查看狀態。Administrators can enable their Skype for Business Online users to IM, make calls, and see presence with Skype (consumer) users. 讓商務用 Skype 使用者新增 Skype 連絡人Let Skype for Business users add Skype contacts

Azure AD B2B 協同作業選項Azure AD B2B Collaboration options

共用目標Sharing goal 管理動作Administrative action How to 資訊How-to information
Azure AD B2B 協同作業-透過將外部使用者新增至組織目錄中的群組來共用內容Azure AD B2B collaboration - Content sharing by adding external users to a group in an organization's directory 一個 Microsoft 365 租使用者的全域管理員可以邀請其他 Microsoft 365 租使用者加入其目錄、將這些外部使用者新增至群組,並授與內容的存取權,例如,群組的 SharePoint 網站和文件庫。A global admin for one Microsoft 365 tenant can invite people in another Microsoft 365 tenant to join their directory, add those external users to a group, and grant access to content, such as SharePoint sites and libraries for the group.

Microsoft 365 協同作業選項Microsoft 365 collaboration options

共用目標Sharing goal 管理動作Administrative action How to 資訊How-to information
Microsoft 365 群組-位於一個集中位置的電子郵件、行事曆、OneNote 及共用檔Microsoft 365 Groups - Email, calendar, OneNote, and shared files in a central place 「業務基本版」、「商務版特優」、「教育版」及「企業版 E1」、「E3」和 E5 方案都支援群組。Groups are supported in Business Essentials, Business Premium, Education, and the Enterprise E1, E3, and E5 plans. 一個 Microsoft 365 租使用者中的人員可以建立群組,並邀請另一個 Microsoft 365 承租人中的人員做為來賓使用者。People in one Microsoft 365 tenant can create a group and invite people in another Microsoft 365 tenant as guest users. 也適用于 Dynamics CRM。Applies to Dynamics CRM as well.

Yammer 共同作業選項Yammer collaboration options

共用目標Sharing goal 管理動作Administrative action How to 資訊How-to information
Yammer-透過企業社交媒體共同作業Yammer - Collaboration through an enterprise social medium 除非 Yammer 系統管理員已停用建立外部群組的功能,否則使用者可以建立外部群組,透過交談在 Yammer 中共同作業、類似和追蹤文章、共用檔案和線上聊天的功能。Unless the ability to create external groups is disabled by a Yammer admin, users can create external groups to collaborate in Yammer through conversations, the ability to like and follow posts, share files, and chat online. 在 Yammer 建立及管理外部群組 (機器翻譯)Create and manage external groups in Yammer

小組共同作業選項Teams collaboration options

共用目標Sharing goal 管理動作Administrative action How to 資訊How-to information
在小組中與組織外部的使用者共同作業Collaborate in Teams with users external to the organization 邀請 Microsoft 365 租使用者的全域管理員需要啟用小組中的外部共同作業。A global admin for the inviting Microsoft 365 tenant needs to enable external collaboration in Teams. 全域管理員及小組擁有者現在可以邀請具有電子郵件地址的任何人,以在小組中共同作業。Global admins and team owners will now be able to invite anyone with an email address to collaborate in Teams.
系統管理員也可以管理和編輯其承租人中已存在的客人。Admins can also manage and edit Guests already present in their tenant.
小組擁有者可以邀請和管理來賓在其團隊中共同作業的方式。Team owners can invite and manage how guests collaborate within their teams. 小組擁有人可在其小組中對來賓的工作進行其他控制。Team owners have additional controls on what the guests can do within their teams.
其他承租人的客人可以查看小組的內容,以及與其他成員共同作業Guests from other tenants can view contents in Teams and collaborate with other members 無。None. 來賓存取體驗The guest access experience

Power BI 協同作業選項Power BI collaboration options

共用目標Sharing goal 管理動作Administrative action How to 資訊How-to information
Power BI 可讓外部來賓使用者透過連結使用共用的內容。Power BI enables external guest users to consume content shared to them through links. 這可讓組織中的使用者以安全的方式在組織之間散佈內容。This enables users in the organization to distribute content in a secure way across organizations.
Power BI 系統管理員可以控制使用者是否可以邀請外部使用者來查看組織內的內容。The Power BI Admin can control whether users can invite external users to view content within the organization. 使用 Azure AD B2B 將 Power BI 內容散佈給外部來賓使用者Distribute Power BI content to external guest users with Azure AD B2B

瞭解 Microsoft 365 內部租使用者共同作業的相關觀點Points to be aware of about Microsoft 365 inter-tenant collaboration

共用使用者帳戶、授權、訂閱及儲存Sharing of user accounts, licenses, subscriptions, and storage

每個組織都維護自己的使用者帳戶、身分識別、安全性群組、訂閱、授權和儲存區。Each organization maintains its own user accounts, identities, security groups, subscriptions, licenses, and storage. 人員可使用 Microsoft 365 中的共同作業功能和共用原則及安全性設定,在維護公司資產的控制權時,提供必要資訊的存取權。People use the collaboration features in Microsoft 365 together with sharing policies and security settings to provide access to needed information while maintaining control of company assets.

  • 使用者帳戶: 在內部部署 Active Directory 網域服務中的承租人或磁碟分割之間,無法共用或重複帳戶。User accounts: Accounts cannot be shared or duplicated between the tenants or partitions in the on-premises Active Directory Domain Services.

  • 授權 & 訂閱: 在 Microsoft 365 中,授權計畫中的授權 (也稱為 SKUs 或 Microsoft 365 方案) 讓使用者能夠存取為這些計畫定義的 Microsoft 365 服務。Licenses & subscriptions: In Microsoft 365, licenses from licensing plans (also called SKUs or Microsoft 365 plans) give users access to the Microsoft 365 services that are defined for those plans.

  • 儲存區: 在 Microsoft 365 授權方案中,SharePoint Online 的軟體界限和限制,會與信箱儲存限制分開管理。Storage: In Microsoft 365 licensing plans, software boundaries and limits for SharePoint Online are managed separately from mailbox storage limits. 信箱儲存限制是使用 Exchange Online 來設定和管理。Mailbox storage limits are set up and managed by using Exchange Online. 在這兩種情況下,無法在承租人間共用儲存區。In both scenarios, storage can't be shared across tenants.

我們是否可以跨 Microsoft 365 承租人共用網域命名空間?Can we share domain namespaces across Microsoft 365 tenants?

否。No. 組織的功能變數名稱(例如 fabrikam.com 或 tailspintoys.com)只能與單一 Microsoft 365 租使用者相關聯且可搭配使用。Organization domain names, such as fabrikam.com or tailspintoys.com, can only be associated and used with a single Microsoft 365 tenant. 每個租使用者都必須有自己的命名空間。Each tenant must have its own namespace. 無法在承租人間共用 UPN、SMTP 及 SIP 命名空間。UPN, SMTP, and SIP namespaces cannot be shared across tenants.

混合式元件和 Microsoft 365 內部租使用者共同作業的情況為何?What about hybrid components and Microsoft 365 inter-tenant collaboration?

內部部署混合式元件(例如 Exchange 組織和 Azure AD Connect)無法在多個承租人間分割。On-premises hybrid components, such as an Exchange organization and Azure AD Connect, cannot be split across multiple tenants.