Share via

B2C SAML Metadata Cache of PartnerEntity Duration

Eric Baines 0 Reputation points
2026-05-11T14:52:53.95+00:00

Hello,

I have been unable to determine how long does B2C cache the SAML metadata for any external IDP defined by the 'PartnerEntity' property before fetching for changes. I am specifically looking for:

  1. How long is the SAML metadata cached for the external IDP?
  2. Does B2C monitor the URL before fetching again?
  3. Is there a way to force a refresh of the cache without editing the custom policy?

Thanks

Microsoft Security | Microsoft Entra | Microsoft Entra External ID

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Rukmini 42,515 Reputation points Microsoft External Staff Moderator
    2026-05-11T15:13:17.15+00:00

    Hello Eric Baines

    For external identity providers set up via the PartnerEntity metadata URL, Microsoft Entra ID B2C stores SAML metadata. The precise cache duration, however, may differ internally and is not publicly recorded.

    Common approaches used to trigger refresh include:

    • B2C does not keep an eye out for modifications to the metadata URL.
    • The service frequently refreshes and caches metadata.
    • Modifications to signing certificates or endpoints might not be recognized right away.

    As of right now, there is no way to manually force a metadata refresh without having to update or re-upload the custom policy.

    Typical methods for initiating refresh include:

    • Uploading the policy XML again
    • Making a little change to the policy and uploading it again
    • Temporarily altering and then returning the PartnerEntity URL

    Usually, B2C is prompted by these events to obtain new metadata from the external IdP.

    In order to prevent authentication problems until cache propagation is finished, Microsoft advises publishing both the old and new signing certificates in the IdP metadata during planned certificate rollovers.

    Let me know if any further queries - feel free to reach out!

    Was this answer helpful?

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.