Share via

Azure AD Federated identity sanity check

Jussi Palo 16 Reputation points
2022-11-17T13:44:27.877+00:00

I'm using Custom Policies and have configured Azure AD multitenant IdP according to https://learn.microsoft.com/en-us/azure/active-directory-b2c/identity-provider-azure-ad-multi-tenant?pivots=b2c-custom-policy.

After successful SignUp, I see user account in B2C like this:
261494-image.png

Note that the Source is "Other".

On user properties page, however Issuer is "Multiple", and Identities as below:
261390-image.png

Question is: Does this look correct? If yes, thank you for confirmation, if not, what is wrong? Just don't want to run into situation later when there are real federated users in B2C.

Thank you!

Microsoft Security | Microsoft Entra | Microsoft Entra External ID

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Akshay-MSFT 17,956 Reputation points Microsoft Employee Moderator
    2022-11-21T15:47:52.243+00:00

    Hello @Jussi Palo ,

    Thanks for posting your query on Microsoft Q&A.

    • If a user is federated, then the issuer IDP name would be reflected in the user profile.

    262727-image.png

    • If a user is created via Graph API or any custom policy with all attributes (including federated and non-federated identities), then we will have "Multiple" issuers:

    262733-image.png

    262688-image.png

    Please do let me know if you have any further queries in the comments section.

    Thanks,
    Akshay Kaushik

    Please "Accept the answer", "Upvote" and rate your experience if the suggestion works as per your business need. This will help us and others in the community as well.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.