This page provides a workaround for organizations that are approaching the limit on the Allow/Block Domains for guest invites. The domain list is currently limited to 25kb.
The high level overview for this solution involves
- Creating a new extension attribute (eg 'approvedForCollab')
- Create a Conditional Access policy that blocks all guests that don't have 'approvedForCollab' = Yes
- Create a Logic app that runs every 5/10 minutes. This logic app will
- Check for new guests invited to the tenant (querying /users)
- Verify if the user's domain/tenant Id matches a known list (or is included in Connected orgs)