Power Pages - Access for External Users

(0) Share

Report

Posted on by ArianneC

Hi,

We have a potential project where we need to create a site using Power Pages that will be accessed by a group of external users outside our organization. In Power Pages, we saw there are 2 options on either making the site Private or Public. Our security team does not want to select the public option as it opens up a lot of risk.

Just wondering, what is usually the best practice or what is the best way to handle this scenario? We've seen some documentation regarding creating guest access, something on B2B or B2C, authentication ,etc. and wondering which method should we research more on so we can provide our security and infrastructure team an approach/solution for this.

Thanks!

Categories:

Security

I have the same question (0)

All responses (1)

Answers (0)

Fubar 8,487 Super User 2026 Season 1 on at

Like (0)

Report
Copy link

Link copied!

Public/Private refers to the Site Visibility as such you can only use this if the users will be in your Azure Active Director (Entra) see https://learn.microsoft.com/en-us/power-pages/security/site-visibility?WT.mc_id=powerportals_inproduct_portalstudio2#difference-between-a-private-site-and-a-public-site

Generally, I treat that setting as a Development setting (e.g. whilst in dev I don't want anyone else to see it).

For a Public site you can configure the site so only authenticated users can use it (and also so anyone with the url gets pushed to the sign-in page - so they don't even see the home page etc).

If Public, then you would configure it so that Open Registration is turned off (e.g. this stops someone just visiting the site and self registering). Generally would then create Contact records for the users and send them Invitations. (and then use whichever authentication method is your preferred)

https://learn.microsoft.com/en-us/dynamics365/guidance/implementation-guide/security-strategy-product-portals#sign-up

Was this reply helpful? Yes No