Two users Microsoft 365 groups synchronization in User Group Synchronization Plugin

Question

Hi everyone, 
 I've got a problem with a client which wants to activate MFA Microsoft 365 login but there is external users: Main users @domain1.ch External users @domain2.ch So I asked the IT team which is in charge of @domain1.ch Microsoft tenant to create 2 applications Azure (one for Azure group sync and one for the federated authentification), it is working fine. But for the @domain2.ch which is managed by another IT company I asked them too to create the two Azure applications (one for Azure group sync and one for the federated authentification) but I cannot add a second "User Group Synchronization Plugin" in the "Advanced Vault Settings" to synchronize the external users. So how can we manage that, I mean synchronize two Azure AD groups from two different Microsoft tenants and set the federated authentification oAuth for both Microsoft tenants ? 
 Thanks, Sylvain

Luis Lino · Answer

Hi Sylvain, 
 As exchanged with you on the opened ticket, here is the workaround/solution : 
 
 The only ( better ) way to sync the external users is to add them as B2B or external users in the main domain main.ch . 
 Everyone can login using the same Fed authentication configuration as well as Sync plugin. 
 
 Have a nice day.