Can't sign into Azure Powershell to change a Guest to a Member

Question

At the moment I cannot get passed the login screen after executing the command ‘Connect-msolservice’.  There seems to be a glitch where it just refuses us to login, regardless of what credentials I use. And I cannot proceed any further to grant Member status to a Guest until I can login as the Global Administrator.

My credentials are correct and the same ones I use to sign into the Azure Portal. I've already added the person through the portal. BUT they get defaulted as a Guest.

Answer 1

Hi,

Thanks for posting the query here!

Are the set of credentials you are attempting to sign-in with (@hotmail.cok.uk) a global administrator in your tenant?

Do You have permission to perform the change? 
Do you have valid tokens? (A good way would be to get a new set by changing the password)

Try creating a test user with a Global administrator and check with the same user credentials via powershell.

For reference : https://docs.microsoft.com/en-us/azure/active-directory/active-directory-assign-admin-roles

Regards,

Vijisankar 

Answer 2

Hi, 

We do not support you logging in to the Azure AD powershell module using a Microsoft Account (MSA) as it is a consumer identity; You need to login to PowerShell using a Work or School Account.

If you go to the Azure AD User Management Blade and create a new local account you can just use the Initial Domain Name for the UPN i.e. user@contoso.onmicrosoft.com and add that account to the company administrators role.

You will then be able to login to PowerShell using that account and update the User Type for the user in question from Guest to Member using Set-MsolUser -UserPrincipalName someone_outlook.com#EXT#@contoso.onmicrosoft.com -UserType Member

I hope that helps,

James.

---

Senior Escalation Engineer EEE-Dev | Azure AD Serviceability | Identity Engineering Team | Azure AD Identity and Access Management | blog: http://aka.ms/edutech