ADB2C | Delete User Flow

Abhay Chandramouli 971 Reputation points
2022-11-18T09:51:29.56+00:00

Hi,
Is there a flow where a user can request his account to be deleted or can delete his/her account on it's own ?

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,769 questions
{count} votes

Accepted answer
  1. JamesTran-MSFT 36,541 Reputation points Microsoft Employee
    2022-11-18T23:18:03.207+00:00

    @Abhay Chandramouli
    Thank you for your post!

    When it comes to a "Delete User Flow" within Azure B2C, you should be able to reference the Delete my account policy example, which allows a user to delete their account.

    To delete an account, user needs to sign-in. The policy checks whether the account exists in the directory (specially for social account that user can sign-in first time). If account exists, the policy presents a warning page and let the user choose to continue. On continue, the policy invokes an Azure AD technical profile that deletes the account and present the account has been deleted message.

    262000-image.png
    Note: Please keep in mind this is only possible with custom policies. If you don't want to use B2C custom policies, your application will have to call the Delete a user MS Graph API. For more info.

    I hope this helps!

    If you have any other questions, please let me know.
    Thank you for your time and patience throughout this issue.

    ----------

    Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.


3 additional answers

Sort by: Most helpful
  1. rbrayb 21 Reputation points MVP
    2023-05-15T04:55:54.57+00:00

    As above, you can do this with custom policies.

    Here's a short video that shows the basic steps.

    1 person found this answer helpful.
    0 comments No comments

  2. rcd0 46 Reputation points
    2023-11-03T10:30:45.3633333+00:00

    How come there isn't a User Flow for this?

    0 comments No comments

  3. Michael Yeager 6 Reputation points
    2023-12-02T22:33:27.5933333+00:00

    This is required by GDPR, so you would think there would be a User Flow to allow users to delete their information and accounts. Problem is that we have an app that has been up and running for over a year using User Flows. It is my understanding that you can either use User Flows, or you can use custom policies, but they don't work together. So as soon as we upload and engage a custom policy like this, everything we already have working may stop working, and we will have to troubleshoot to resolve. This is risky for a live app. But I guess we have no other choice.

    0 comments No comments