When building an extranet in Office 365, you need to ensure your extranet strategy aligns with your business. From our experience, there are two types of extranets: Unstructured Structured Unstructured extranets are when you collaboratively work with external parties in your organization in a smaller ad-hoc way. This can be in the form of secure link sharing and newly announced at SharePoint Conference 2019 request files from others. Structured extranets are for larger groups of collaborators with a wide array of roles and permissions. This sort of extranet requires a formal governance and permission plan to ensure users only have access to information they require. Azure AD B2B provides the fundamental basis for larger user group access, but there are inherent limitations that do not support delegation to the business.

1. (#)
Unstructured vs. Structured
Extranets in Office 365
Tuesday, June 11, 2019
12 - 1 PM EST

2. (#)http://eum.co
• President, Extranet User Manager
• SharePoint MVP
• Partner Seller, Microsoft Canada
• peter.carson@extranetusermanager.com
• http://blog.petercarson.ca
• www.extranetusermanager.com
• Twitter @carsonpeter
• VP Toronto SharePoint User Group
Peter Carson

3. (#)http://eum.co
Envision IT built custom Extranet solution
Productization of code
base begins
Extranet User Manager
(EUM) Installer created
Azure B2B support
Channel Partner
program launched
2008
2009
2010
2011
2012
2014
2015
2016
2017
http://eum.co
EUM Brand and
Website launched
Office 365 support
2018
EUM V4 Launched
2019
User-Centric EUM
Login launched

4. (#)http://eum.co
Customers around the Globe
85+ Customers Deployed Globally

5. (#)http://eum.co
Making the News!
Exclusive interview with Mark Kashman and Stephen Rice
of the Microsoft SharePoint Team
eum.co/resources/articles/external-sharing-interview-with-the-sharepoint-product-team

6. (#)http://eum.co
Agenda
Introductions
Unstructured Extranets
External Sharing Announcements
Structured Extranets and Azure B2B
Extranet User Manager with Office 365 Overview
Groups & Users SPFx Webpart Demo with Flow Connector
Summary, Q&A and Closing

7. (#)http://eum.co
Poll – Which do
you use today?
Office 365
Microsoft Flow
Power BI
SharePoint On Premises

8. (#)http://eum.co
Unstructured Extranets with Office 365 External Sharing
• External Sharing in Office 365 strongly
supports ad-hoc collaboration
• Sharing documents with a few to a
few dozen external people
• Secure Link sharing to sites, libraries,
and documents
• Anyone with the link (Anonymous)
• People in your Organization
• People with existing access
• Specific people

9. (#)http://eum.co
New External Sharing Announcements from SPC 2019
• Request Files
• Ask colleagues and external guest
users to upload files to a folder
• Uploaders can only see their own
content
• Single link can be used for many
uploaders
eum.co/resources/articles/external-sharing-announcements

10. (#)http://eum.co
NEW! OneDrive sharing in Microsoft Teams
 Coming soon

11. (#)http://eum.co
New External Sharing Announcements from SPC 2019
• Deeper Integration with Azure AD B2B
• External users can sign in with One
Time Passcode (OTP) to verify they
own the email address
• Able to utilize premium Azure AD
functionalities
• Conditional access
• Multi-Factor Authentication
• Google auth federation
eum.co/resources/articles/external-sharing-announcements

12. (#)http://eum.co
New External Sharing Announcements from SPC 2019
• Enhanced Sharing Reports
• Access a list of unique permissions on
a given site collection
• Export report to a csv. File and import
into PowerBI or Excel to build sharing
dashboards
eum.co/resources/articles/external-sharing-announcements

13. (#)http://eum.co
New External Sharing Announcements from SPC 2019
• Expiring external access
• Site admins can define how long a
guest user has access to site contents
• IT access policy defined at the
organization level (ie. All users will lose
access after 60 days)
• Site admin can extend access for users
expirations if additional time is
permitted
eum.co/resources/articles/external-sharing-announcements

14. (#)http://eum.co
Structured Extranets and Azure B2B
• Simple
• Partners are invited into your Azure AD
• Each partner user uses an existing Azure AD account or one that is
easily created during invitation acceptance
• Permissions can be managed through Azure AD groups
• Secure
• All access is controlled through your Azure AD directory
• Partner users can be removed from your Azure AD and their access is
immediately revoked
• When the partner user leaves the partner organization, access is lost
automatically
• Seamless
• Partner companies who need access do not need to have Azure AD
• Azure AD B2B collaboration provides a simple user sign-up experience
for these partners

15. (#)http://eum.co
Azure AD B2B and Office 365
• Partner users can be granted access to any part
of your SharePoint Online
• Considered external users by Microsoft
• No Office 365 subscription is required for the
partner users
• Permissions in SharePoint Online can be applied
to Azure AD groups
• Site owners can manage the Azure AD group
membership through EUM

16. (#)http://eum.co
B2B Experiences
User Type Experience
Existing Office 365 or Azure AD user Logs in with their Azure AD credentials to accept the invitation
Business email not in Azure AD One Time Passcode (OTP) is sent to Email address
User inputs 8 digit code into login form
Code is valid for 30 minutes
Consumer email (Gmail, Hotmail, etc.) Consumer Microsoft accounts are supported
Direct Federation to Google is now also supported
https://www.extranetusermanager.com/resources/articles/microsoft-azure-ad-b2b-articles

17. (#)
Why Extranet User
Manager with Office 365?

18. (#)http://eum.co
• External Sharing is not scalable
• Individual users need permissions
management to invite
• Permissions become a mess, governance
goes out the window
• Azure B2B is not end user friendly
• Azure portal is overwhelming
• All or nothing delegation
• No self-registration
• No integration to other line of business
systems
• No integration to on premises AD
• EUM provides the self-registration, profile
management, and delegation
• As users and groups are created by the
business owners, they are setup in Azure AD
by EUM
• EUM sends the invitations
• Azure AD manages the login process
• EUM manages the group membership
leveraged for permissions
Office 365
Third Party

19. (#)http://eum.co
When to use….
External Sharing
• Sharing with a few people
• Co-authoring on individual documents
• You are the sole administrator of
permissions
• Eliminate the use of other shadow IT within
the organization
EUM with Azure B2B
• Sharing with many people with granular
permission sets
• Self service functionalities like Self
Registration, My Profile, etc.
• Delegation to the business owner to
administer and manage sites they own as
well as tier 1 service desks
• Link into automated site provisioning
process

20. (#)
Extranet User Manager
Features

21. (#)http://eum.co
• Add Groups and Users directly from the
SharePoint Online site
• Permissions are automatically wired up in
the background by EUM Flow Connector
• Full Administrative capabilities
• Add, Edit, Remove groups
• Add, Edit, Remove users
• Copy and share private link for registration
New Feature Announcement:
EUM Groups and User SPFx Webpart

22. (#)http://eum.co
End User Component(s)
• Self-Registration
• My profile
Administration Components
• Delegated access for the business owners
• Search, add, edit, and import users and
groups
• Used by administrators to configure the
system
EUM Components

23. (#)http://eum.co
• Maintain your corporate brand
throughout the entire user
experience
• Self-Registration
• Custom Emails
http://eum.co
Branded Experience

24. (#)http://eum.co
Delegated User Management
• Management of the extranet users is
delegated to the business
• IT does not need to manage accounts
• Can also be delegated securely to the
external organizations themselves

25. (#)http://eum.co
Self-Registration
• Fully customizable registration
experience
• Self service profile page
• Fields can be added or removed
• Can be integrated into back-end
systems
• Customizable approval workflow
• Simple edits such as adding or
removing fields done just through
HTML editing of form

26. (#)http://eum.co
Works with SharePoint 2010 to 2019 and Office 365
• Does not need to be installed
on the SharePoint Server
• PowerShell script setups up the
trust
• Office 365 supported through
Azure B2B

27. (#)http://eum.co
Adaptive Design
• Leverages the Bootstrap framework
• All end user pages adapt to the
smartphone, tablet, or desktop
experiences

28. (#)http://eum.co
Azure Hosted or On Premise
• Can be installed on an on premise server
• SharePoint Server
• IIS Server
• Host in your Azure Tenant
• App Service
• Host in our Azure Tenant
• Secure multi-tenant hosting
• Managed by Envision IT
• 7x24 monitoring and remediation

29. (#)
Demo – Office 365
Registration through to Login

30. (#)
Licensing

31. (#)http://eum.co
Extranet User Manager Licensing - Monthly
US Dollars
Full feature set and pricing details available at https://www.extranetusermanager.com/Pricing
Version # of Users Cost Onboarding (1 Time Fee)
Light Edition 250 $250 /month $800
Standard Edition 250 – 5000 $400 /month $1,600
Enterprise Edition 5000 + $650 /month $1,600

32. (#)http://eum.co
Upcoming Events
Extranet User Manager
Webinar – Topic TBD
July 23, 2019
12 pm – 1 pm EST
Eum.co/events
Microsoft Inspire
July 14-18, 2019
Las Vegas, NV
https://partner.microsof
t.com/en-us/inspire
Microsoft Ignite
November 4-8, 2019
Orlando, FL
https://www.microsoft.c
om/en-us/ignite

33. (#)http://eum.co
Thank you!
Questions?
http://eum.co