Azure AD B2C Login returns 400 after long idle time (with no error shown on UI)
After keeping the Azure B2C login screen idle for the whole night (put to sleep), and then logging in with the same login page the next morning, it returns 400 bad request, silently failing without showing any errors on the UI. The same issue is…
How to emit some data field on azure AD JWT token
We have integrated a web client with OAuth to authenticate using Azure AD and are storing the token for later use. However, we need to exclude certain sensitive data, such as email, IP address, and name, which are not necessary for the application. Could…
Microsoft Entra External ID - Federation with EntraID and impersonation feature
I'm in the process of deciding which identity server/service to integrate with a set of applications. Since Azure AD B2C it's being replaced I'm not inclined to start with that service. On the other hand, EntraID External tenant do not currently support…
Unable to logout from External Identity Provider (SAML 2.0)
Hello All, I am working on React Application which will support multi-IDP logins, i am using MSAL library to implement I have configured below IDP SAML 2.0 using Microsoft External Identities. SAML for Okta SAML for OneLogin SAML for Google Suite I…
Azure B2C user creation is failed for some specific user
I am creating a user in Azure B2C using Graph Client (5.40.0). While creating the user, we are getting response saying that "userPrincipalName already exists". Then we try to get the user using the user's principal name, we are getting error…
MFA policy is misconfigured. Work with your admin to enable notification through mobile app in the policy.
We have enabled MFA enforcement on our lighthouse but somehow all the users were receiving this error "MFA policy is misconfigured. Work with your admin to enable notification through mobile app in the policy." We have tried disabling the MFA…
Is it possible to send telemetry from Azure B2C JourneyInsights to an Application Insights with local authentication disabled?
Is it possible to send telemetry from Azure B2C JourneyInsights to an Application Insights with local authentication disabled? If so, would it be possible for someone to do a sample? If not, will that feature be coming at any point?
When will the Azure B2C JourneyInsight node support ConnectionStrings as well as Instrumentation Keys?
Instrumentation keys for Application Insights are going to be EOL in March 2025 (less than a year away):…
How can I synchronize my company employees' calendars with our CRM appointments and vice versa?
Hi all, I'm currently attempting to integrate appointments with the Outlook calendar. However, I'm encountering difficulties accessing users' appointments from their Outlook using Azure App with application permissions. Could you assist me with this…
Why does my Azure AD B2C go into infinite loop on login (localhost)
Followed tutorial (below) to set up a .Net 8 MVC app with an Azure AD B2C signin page. Using a new tenant with user flows. When I test the user flow with reply url, jwt.ms, a token is created. However, when I attempt to test login locally…
Can users from different tenants be given access to Business Central?
Is it possible to set up multi-tenancy for Business Central Online? I'd like to find out if and how, users from different Microsoft Entra ID tenants can be given full access to Business Central Online?
B2C Microsoft identity provider with msal-browser 2.x login error code challenge require
Please see my issue in MSAL Github: B2C Microsoft identity provider with msal-browser 2.x login error code challenge require I got a suggestion to ask in the community maybe someone has an answer or has the same issue, Why does B2C not forward some…
How to fix error "AADB2C90046" returned back by ACS endpoint of Azure AD B2C?
Users are encountering an error after successful authentication through SiteMinder (external IdP). Following authentication, SiteMinder sends a SAML Response to Azure AD B2C's ACS endpoint, but B2C returns the below…
Endless login loop - locked out from tenants
We are currently locked out from some of the CIAM tenant(s) we manage. This issue seems to surface with every tenant we created during this week after some time passes. When we try to login, the following prompt is shown: Then, after clicking next,…
b2c prompt=login not working as expected
We are noticing an odd behavior with the prompt=login option using B2C custom policies and could use some help from this support forum. My requirement is to force re-auth for the following use case: “Sign in as a different user” or “Hi John Doe! Not you?…
Invalid Content-Security-Policy Header when using Custom Policy with JourneyFraming
I'm looking into embedding the Azure AD B2C sign-in page in an Iframe in my SPA. Following the documentation, I have added my domains (MYDOMAIN1, MYDOMAIN2) in the JourneyFraming element of my Custom Policy. The authentication works - however, there are…
How to remove proxy address from an azure ad user?
How to remove a proxy address from azure AD user? Generally I have logged to portal using personal ms account, signed up for azure and created a separate tenant, then an internal user with global admin privileges that I intended to use daily instead of…
AD B2C show standard error page when REST API returns 4xx
Hi, I'm calling a REST API from an orchestration step just using a TechnicalProfile, but not inside a ValidationTechnicalProfile block. <OrchestrationStep Order="6" Type="ClaimsExchange"> <ClaimsExchanges> …
Validating Azure B2C Token Object ID for API Access to Corresponding Azure Storage Container
Hi, currently I have an API that allows users to send requests to an external Azure Function with the role of "Storage Blob Contributor" to upload and download files to my Azure Storage account's containers. Each container corresponds with a…
Azure AD B2C - API Connector - 400 Bad Request: There was a problem processing your request. Please try again.
Hi, I'm getting a 400 - Bad Request with response body {"errorMessage":"There was a problem processing your request. Please try again.","httpStatus":"400","numberOfAttempts":1} 'before…