Azure B2C SSO - One Web App and Encompass Borrower Portal

Samer Abud 26 Reputation points


Our web app will support user login/registration using Azure B2C. The goal is to first perform the sign in and obtain the token/initiate a session which will further be used to open/iframe EllieMae Encompass Borrower Portal if necessary. The goal is to achieve SSO between our Web App and Encompass Borrower Portal.
I need help how to setup Azure B2C to work with Encompass Borrower Portal. The flow would be the following:

  1. Sign in/sign up into Web app using Azure B2C
  2. Open web app page which contains JavaScript for iframing Encompass Borrower Portal ()
  3. JavaScript tries to initiate Encompass Borrower Portal for which SAML SSO is setup in Encompass instance
  4. Encompass Borrower Portal needs to connect to Azure B2C using SAML metadata and verify that the user is already logged in from step 1 and let the user proceed without sign in form

In Encompass instance, there is only SP initiated flow supported:

and it requires SAML SSO metadata file to be uploaded

How should I set up Azure B2C in order to support this flow? Should I register two Application in Azure B2C, one for our web app and one for Encompass? Should I also have two separate SAML Policies because one redirect URL should be our app and second redirect URL should be Encompass.

Thanks in advance.

Not Monitored
Not Monitored
Tag not monitored by Microsoft.
36,531 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. 2022-10-05T06:42:52.147+00:00

    Hello @Samer Abud and thanks for reaching out. Azure AD B2C support SP initiated flows and SSO. Please take a look to Register a SAML application in Azure AD B2C. You don't need to create two app registrations, just one with different redirects URLs.

    Let us know if you need additional assistance. If the answer was helpful, please accept it and complete the quality survey so that others can find a solution.