I have a portal that has a canvas app embedded into it. We want external users to be able to use the canvas app. Currently we have local registration on and want to be able to add these users to our AAD. I thought with a flow it could be done, but we hit a problem with trying to map the password as it's hashed (expected).
I tried turning on the AAD self-sign up for external users, but this still asks them to sign in with a microsoft account and we want them to be able to use any email address without needing it to be a microsoft account.
Is it possible to do this?
Alternatively, is it possible to get the local sign up to only ask for an email address, then somehow add them to the AAD and auto-generate a password for them?
I have a point that you can try to use flow to invite these user as Guest in Azure AD by HTTP request, find more information from here, and add the guest user to a security group that is shared with the app.
The advantages of this idea are that the guest does not have to specifically accept guest invitation, reference from here, and all types of Emails are supported.