This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 88%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVJ%3C/text%3E%3C/svg%3E)
Hello,
I am currently setting up a custom policy for my application using Azure AD B2C with Identity Experience Framework to customize the Sign In and Sign Up flows. However, I encountered an error message while uploading the custom policy in Azure AD B2C that says "Journey framing in the relying party expects absolute https urls, the given url 'https://192.168.200.99:8088' is invalid." How do I add a private IP or local private IP address to the Journey framing in the relying party in Azure AD B2C custom policy?
Thanks in advance.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAV%3C/text%3E%3C/svg%3E)
Thank you for reaching us!
The error message you received indicates that the URL you provided for the relying party in your custom policy is not a valid HTTPS URL. This is because the URL you provided is a private IP address, which is not a valid URL for the relying party.
To add a private IP or local private IP address to the Journey framing in the relying party in Azure AD B2C custom policy, you need to use a valid URL that starts with "https://" and points to a publicly accessible endpoint. Private IP addresses are not publicly accessible, so you cannot use them as the endpoint for your relying party.
you can use a publicly accessible domain name for your relying party. once you have a valid URL for your relying party, you can update your custom policy to use that URL in the Journey framing for the relying party.
Hope this helps. Do let us know if you any further queries by responding in the comments section.
Thanks,
Akhilesh.
If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.
Hi Akhilesh,
Thanks for detailed explanation. May I know, why the Private IP address are not valid URL for relying party ?
Hi @Vijay Jupudi
Using private IP addresses for relying parties isn’t feasible because they aren’t globally unique and can’t be resolved over the internet.
Relying parties need to communicate with the identity provider to validate security tokens, and this communication requires a globally accessible endpoint. Therefore, using a fully qualified domain name is recommended as it ensures the endpoint can be reached over the internet.
If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.
Hi Akhilesh,
Thank you for addressing my concerns; I really appreciate it. Is a relaying party in the public domain with the port similar to a URL like https://xyz.abc.com:8087?
Hi Akhilesh,
Thank you for addressing my concerns; I really appreciate it. Is a relaying party in the public domain similar to a URL like https://xyz.abc.com:9768?