Symptoms

The Azure AD broker is configured successfully and users can authenticate against designer and runtime sites currently. All appears to be behaving properly.

However, when using the service tester and executing the "Get" method, you are able to return users that are native to Azure AD. However, when the same "Get" method is tried with a federated account, the method cannot be executed.
 

Diagnoses

This was determined to be a bug and a fix is available.
 

Resolution

The following Bug items have been logged for this behavior. Please submit a K2 Support Ticket in order to receive the corresponding fix.

Bug 556345: 5coldfix item 469]Azure Active directory Service - Get Method error when trying to retrieve federated user details from other directory - External Users

Bug 556708: Azure Active directory Service - Get Method error when trying to retrieve federated user details from other directory - External Users

Task 556709: STS to support multiple claim types on a single issuer (Name claim type vs email claim type) - AAD External users continued

Task 556710: SQL Server Service - Cannot impersonate external non local AD users from Azure Active Directory (AAD)