Azure AD B2C best practice and security hardening
I have deployed multiple Azure AD B2C as the Global Administrator for all of my Development teams. May I know what the security best practices to follow so I can secure it to avoid lateral movement or any security breach? Thanks in advance.
![](https://techprofile.blob.core.windows.net/images/WsWYoGdWukeBW66msAr6qQ.png?8D8128)
Error in file handler in azure app
I have developed an Azure app registration called "Test" that displays a menu on SharePoint and OneDrive. When a user clicks on this menu, it is supposed to redirect them to a specific page. However, I am encountering an issue where the menu is…
What are the side effects or implications when I joining the multiple Azure AD / Entra ID using Connected Organizations?
What is the purpose of this setting below? What are the side effects or implications when I add the subsidiary or the head office Azure platform when using the setting above? I need to know the implications and the procedure to follow to avoid any…
![](https://techprofile.blob.core.windows.net/images/WsWYoGdWukeBW66msAr6qQ.png?8D8128)
![](https://techprofile.blob.core.windows.net/images/WsWYoGdWukeBW66msAr6qQ.png?8D8128)
Azure SAML App TEST
Hello I defined External ID and was testing it, after some time I cannot any longer start log in page and I am getting error: Mind that 6 hours ago everything was working fine.
Can not sign into external tenant. Get error: "IDX20804: Unable to retrieve document from ___v2.0/.well-known/openid-configuration"
I am unable to get external Id tenant to sign in for my .net 8 Blazor (Server) application. I have followed these steps to create the user flow and integrate it into my application. …
What Azure AD B2C role can I assign for the Dev team without assigning Global Administrator?
I've set up several Azure AD B2C instances for my teams using the Dev domain. However, they cannot log in or switch to this Azure AD B2C tenant from the Azure Portal GUI. What specific Azure AD B2C role can I assign to the Developer team without…
![](https://techprofile.blob.core.windows.net/images/WsWYoGdWukeBW66msAr6qQ.png?8D8128)
Custom branding only on Sign In page but missing on Sign Up
Hi We have a B2C tenant with recommended SignInSignUp User Flow. We use a default (Ocean Blue) template with custom branding. Page Layout Version set to 1.2.0 - Current. When user starts a user flow the sign in page is styled correctly with company…
Change Password using Microsoft Graph Beta
I am using Microsoft Graph beta and trying to reset password for the user.. It is giving me following error "Exception of type 'Microsoft.Graph.Beta.Models.ODataErrors.ODataError' was thrown.:::: at…
how to grant permission to Azure Managed Identity to SharePoint online Site?
how to grant permission to Azure "Managed Identity" to SharePoint online Site?
Azure B2C custom page layout not reflecting changes in template
Trying to develop a custom page layout for my User Flow. When changing the content in the blob storage, updating the Custom page URI or even turning off the option to use a custom template - no changes are reflected when running the user flow either from…
B2C Custom Policy Translations for Required Fields on SignUp page Not Translatable
Hi Folks, Using Custom Policy for Signup process. We have translations for 9 languages and several required fields. However the translations are not working for required fields. What I get is "{field-type} is required" (screen shot below). On…
Entra External ID Disabling security defaults
Hello, I am exploring the possibility of enforcing MFA for either all users or specific groups using Conditional Access in an External Tenant. However, this requires disabling "Security Defaults," which is not recommended. When I try to add the…
Using Azure B2C Custom policy email verification with Sendgrid what is lockout period if exceed number of retries?
We are using Azure B2C custom polices. We use Sendgrid to verify users' emails. Users enter their email address in a flow and we send an email containing a 6 digit OTP code to that address. Users then enter the OTP into the flow to confirm the…
restrict local account creation in azure tenant
can we restrict local account creation in azure tenant? I just want the feature to invite guest account . and disable local account creation ability. Please suggest can it be done and how?
Azure B2B Invite to External Users Sent in Different Languages
Hi, I am currently facing a challenge, hopefully not a unique one. I am trying to invite external users to collaborate on our tenant. I am sending out the invitations through Azure/Identity/Entra. However, invites sent to personal accounts (eg. gmail,…
How to add OpenID connect identity provider to Microsoft Entra External ID? I see only SAML/WS-Fed option.
Looks like there should be an OpenID connection option. How can I add entra ID multitenant provider here?
Allow public client flows
Hey, I am reaching out regarding an adjustment I intend to make to our application, which currently utilizes the Graph API to import mail from our users. Specifically, I am interested in modifying the "Allow public client flows" setting to…
Azure AD B2c automatice session timeout not happening
I have React Application which is using Azure AD B2C to authenticate users. The session configuration in the Azure portal is set to expire within 15min. But after 15 min the session does not expire at all. My testing process: I login using Azure…
Microsoft Entra External ID and authentication using Microsoft Entra federation
Hello, I have been testing the MS Entra External ID sign up and sign in user flow. It came to me as a surprise that users from other MS Entra ID tenants need to be added as Guest users to the External ID tenant. In other words, the login screen in the…
![](https://techprofile.blob.core.windows.net/images/8aQ9WIceAQAAAAAAAAAAAA.png?8D7FBD)
![](https://techprofile.blob.core.windows.net/images/8aQ9WIceAQAAAAAAAAAAAA.png?8D7FBD)
Unable to create User flow in External tenant
It's like a nightmare to deal with this issue! I am unable to create User Flows successfully. Or some times they get created but not get listed under User flows. When I refresh the screen after minutes or an hour or so, I can perhaps see the user flows I…