Implementing MFA for customer accounts not in Azure Active Directory B2C (Azure AD B2C) directory
Hello, We are implementing Azure B2C as identity system for an application. Our customer accounts are not in Azure Active Directory B2C (Azure AD B2C) directory. We are using Sign-in with REST API identity providerfor user sign-in process. We are…
Entra External ID Disabling security defaults
Hello, I am exploring the possibility of enforcing MFA for either all users or specific groups using Conditional Access in an External Tenant. However, this requires disabling "Security Defaults," which is not recommended. When I try to add the…
Using Azure B2C Custom policy email verification with Sendgrid what is lockout period if exceed number of retries?
We are using Azure B2C custom polices. We use Sendgrid to verify users' emails. Users enter their email address in a flow and we send an email containing a 6 digit OTP code to that address. Users then enter the OTP into the flow to confirm the…
Can not sign into external tenant. Get error: "IDX20804: Unable to retrieve document from ___v2.0/.well-known/openid-configuration"
I am unable to get external Id tenant to sign in for my .net 8 Blazor (Server) application. I have followed these steps to create the user flow and integrate it into my application. …
remove work school account from azure
remove school work account from azure
Azure AD B2C - how to shorten the "state" parameter in the signout url to avoid query string is too long error?
Hi, we are getting a unique query string too long error upon adding one of the standard context parameters. Somehow it is getting added to the "state" property while user logging out. I have no idea why the "state" property is…
restrict local account creation in azure tenant
can we restrict local account creation in azure tenant? I just want the feature to invite guest account . and disable local account creation ability. Please suggest can it be done and how?
Azure B2B Invite to External Users Sent in Different Languages
Hi, I am currently facing a challenge, hopefully not a unique one. I am trying to invite external users to collaborate on our tenant. I am sending out the invitations through Azure/Identity/Entra. However, invites sent to personal accounts (eg. gmail,…
How to add OpenID connect identity provider to Microsoft Entra External ID? I see only SAML/WS-Fed option.
Looks like there should be an OpenID connection option. How can I add entra ID multitenant provider here?
Azure SAML App TEST
Hello I defined External ID and was testing it, after some time I cannot any longer start log in page and I am getting error: Mind that 6 hours ago everything was working fine.
Allow public client flows
Hey, I am reaching out regarding an adjustment I intend to make to our application, which currently utilizes the Graph API to import mail from our users. Specifically, I am interested in modifying the "Allow public client flows" setting to…
Mfa session not working in azure ad b2c custom policy
i’m using https://github.com/azure-ad-b2c/samples/tree/master/policies/mfa-email-or-phonecustom policy. how to configure MFA Session to skip MFA method selection Prompt for Every sign in? When I am testing Policy on Azure AD B2C Portal it will always…
Does a 3rd party SaaS provider need to be Fedramp certified to connect to GCC High info through API
We have a third-party SaaS software that requires an API connection to O365 to ingest email (headers/bodies) and calendar items. One of our business units uses GCC High, and we're wondering if the third-party software can connect to our GCC High O365…
Azure AD B2c automatice session timeout not happening
I have React Application which is using Azure AD B2C to authenticate users. The session configuration in the Azure portal is set to expire within 15min. But after 15 min the session does not expire at all. My testing process: I login using Azure…
Microsoft Entra External ID and authentication using Microsoft Entra federation
Hello, I have been testing the MS Entra External ID sign up and sign in user flow. It came to me as a surprise that users from other MS Entra ID tenants need to be added as Guest users to the External ID tenant. In other words, the login screen in the…
Unable to create User flow in External tenant
It's like a nightmare to deal with this issue! I am unable to create User Flows successfully. Or some times they get created but not get listed under User flows. When I refresh the screen after minutes or an hour or so, I can perhaps see the user flows I…
Azure API Management Credentials Manager missing "scope" field for generic OAuth 2.0 CCF and Entra External ID
I have issues getting an access token using client credentials in API Management Credentials Manager. I am using Entra External ID for external tenants as an identity provider. Credentials Provider details: Identity provider: OAuth 2.0 Grant type:…
How to return claims to Azure B2C Custom Policy ClaimsProvider
I have defined a ClaimsProvider, which calls an endpoint in my local flask application <ClaimsProvider> <DisplayName>External Claims Source</DisplayName> <TechnicalProfiles> <TechnicalProfile…
We encountered an 'invalid_grant' error connecting to the identity provider. Please try again later
Category : Azure AD B2C We have added federated login(Sign in with Google) to our application. Google IDP is working well for users having @gmail domain users but non gmail users , some of the users we are getting below error. "We encountered an…
Request_BadRequest returned when trying to assign Custom Attributes to B2C Users
I created a new custom attribute for my B2C users, as I want to assign them a string value associated with their account with this custom attribute. The value will be read with their token and passed through to my application. I've been able to obtain…