This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(38.4, 68%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
I have a signup flow and it is working fine and it is multi-step:
And now the flow is, after completing all steps a new user will get created, if the user name already exists then in the last step I'm getting an error message that the user already exists. Now I need to change this flow. After entering the contact details(email), I want to check whether this user exists or not. If it exists then I need to show the error message that shows in the last step in the first step itself and block the journey from moving to the next step.
To achieve this, what I did is:
Created a TP that reads the user details using email and put that as a validation technical profile for the first step:
And added 
to 
Following is the validation profile section:
But it is not working as expected, I tried with an existing user after clicking next on the first step it moves the verification step without any error.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 0%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFM%3C/text%3E%3C/svg%3E)
Can you try the sample templates in the B2C documentation? https://learn.microsoft.com/en-us/azure/active-directory-b2c/active-directory-technical-profile#write
There are samples here that should work with the raiseerrorifclaimsprincipalalreadyexists flag set to true. If these are not working please let us know. Otherwise it looks like there might be some sort of issue with your technical profile, I would suggest working slowly from the working base template to build out your custom technical profile to debug your current technical profile.
In addition to that, the raiseerrorifclaimsprincipalalreadyexists claim only seems to be working properly in the write scenario. This github issue is currently being looked into further though and is not necessarily correct.
https://github.com/MicrosoftDocs/azure-docs/issues/46728
hello i'm following up on this issue can you please respond in regards to the last comment posted?
Yeah, raiseerrorifclaimsprincipalalreadyexists works only with Write.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 80%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESZ%3C/text%3E%3C/svg%3E)
I am following on this - please ping me back
www.sqlservermanagementstudio.net/2011/09/sql-azure-reporting-services.html
This is for?
I find solution in another way as follows:
After a Read Operation, the objectId claim is populated only if the user already exists. I have put Read with RaiseErrorIfClaimsPrincipalDoesNotExist = false and then I used ClaimTransformations and ValidationTechnicalProfiles to block the UserJourney if objectId != null. More specifically
used "UserMessageIfClaimsTransformationStringsAreNotEqual"
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 89%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJM%3C/text%3E%3C/svg%3E)
thank you for the information. Could you share you final code? Pls.
See the file attached.3231-policy.txt
@Juan M Solórzano I Please find the answer i have added. Please check the file attached.
Thks... I could solve the problem with you information. I only have one situacion, I need to stop the process when the email exist.
I attach my action code.
But the validation NOT stop in the "AAD-UserReadUsingEmailAddress-RaiseIfExists"- and run the other two TechnicalProfile. (GenerateOtp and SendGrid).
Do you know how can I stop the process when the TechnicalProfile AAD-UserReadUsingEmailAddress-RaiseIfExists return the InputParameter Id="stringComparison" in true?
Add precondition for your Validation technical profiles:
@Juan M Solórzano I Hope that helps
Thank you! I solved the situation with your help.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 19%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
The attached policy worked for me. Thank you.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 84%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENG%3C/text%3E%3C/svg%3E)
I guess you would be adding preconditions like this:-
<Preconditions>
<Precondition Type="ClaimEquals" ExecuteActionsIf="false">
<Value>objectId</Value>
<Value>NOTFOUND</Value>
<Action>SkipThisValidationTechnicalProfile</Action>
</Precondition>
</Preconditions>
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 2%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESR%3C/text%3E%3C/svg%3E)
what the above does not do is stop the userJourney at the point of clicking the 'Send Verification Code' button below the email..wonder if there is a way to do the before the verification code email is sent out.
what the above accepted answer does not do is stop the userJourney at the point of clicking the 'Send Verification Code' button below the email..wonder if there is a way to do the before the verification code email is sent out.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 41%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
This works, except if you change the email and try again with an unused mail I continue to get the error message. I assume the objectId remains populated. How should we blank it when they attempt to reverify?
@Jeremy You can use an input claimtransformation in your initial step. Assign "NOTFOUND" to ObjectId, that will fix your problem, I guess.
I tried blanking it on the input, but I think that doesn't work, because if it did find a match on the second round it blanks it.
So I ended up just always blanking it right after the assertion as a second output transformation. It seems to be working, but I'm not 100% confident yet.
<ClaimsTransformation Id="SetObjectIdToNull" TransformationMethod="NullClaim">
<OutputClaims>
<OutputClaim ClaimTypeReferenceId="objectId" TransformationClaimType="claim_to_null" />
</OutputClaims>
</ClaimsTransformation>
...
<OutputClaimsTransformations>
<OutputClaimsTransformation ReferenceId="AssertObjectIdObjectIdNotFoundAreEqual" />
<OutputClaimsTransformation ReferenceId="SetObjectIdToNull" />
</OutputClaimsTransformations>
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 5%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESP%3C/text%3E%3C/svg%3E)
@Juan M Solórzano I I have similar situation. Could you please share the code?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(83.2, 57.99999999999999%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDR%3C/text%3E%3C/svg%3E)
I ran into the same issue, where I'm using display control for email verification as part of the sign up process. My good guess is that 'AAD-UserReadUsingEmailAddress' exists for SSPR and would only throw an error if the user doesn't exist. However I was able to resolve this by adding a write step after read, if the user is found with a precondition to see if my objectId claimExists and this will throw an error if the user exists and skips the write step if the user doesn't exist. It's lil hacky but works. Hope this helps!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 4%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHA%3C/text%3E%3C/svg%3E)
@Dyasani, Ranjeeth (NonEmp) - I had the similar need when we are using email display control , and your above workaround solution works well in my case too. Thanks for posting this !