Hi @AlexK_CH ,
Please find my responses below,
When using per app licenses, a user might not have a license assigned until accessing the system. Without that, the user will not be synced to the AAD Teams, which have Security Roles assigned. Therefore, a user e.g. cannot be set as an owner of an element where permissions are required. "Planning" upfront the user accessing a system is therefore not possible. How do you tackle this circumstance? With additional local Teams where you manually add the users until they access the systems and then are synced to the proper AAD Teams? - In this case , if its canvas App you can add your User as Guest user in your Azure AD. Please see below link for more details -
https://docs.microsoft.com/en-us/powerapps/maker/canvas-apps/share-app-guests
If you are expecting the user to be in Data verse then you need to have User In Office 365 and Assign Proper License to get it done. Gmail account cannot Access Direct Model-Driven App
And last one: once they access the system, will they more or less "real time" appear in the applicable AAD Teams? Is that also the case when they have a license already or is it really about "accessing" the system?
- Yes once they access the system the sync is real time.
-------------------------------------------------------------------------
If I have answered your question, please mark your post as Solved.
If you like my response, please give it a Thumbs Up.
My Blog: Dynamics 365 Key Topics – https://d365topicsbydk.com/
My YouTube Channel : https://www.youtube.com/channel/UCxSIryP2ah2VpEFr-Z72t1A
Regards
Devi
