Custom password reset policy failed

David Wong 51 Reputation points
2022-12-01T18:30:22.427+00:00

I am having the exact problem as AAD B2C: forget password doesn't work in sign up and sign in user flow - Microsoft Q&A
However, I am using custom policy, how could I fix?

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
3,000 questions
0 comments No comments
{count} votes

Accepted answer
  1. Marilee Turscak-MSFT 37,061 Reputation points Microsoft Employee
    2022-12-05T22:08:34.763+00:00

    You need to use page layout version 2.1.2 or later in order for the embedded password reset to work so that the application doesn't need to handle the AADB2C90118 error. Otherwise your users will encounter the AADB2C90118 by default if you haven't set your application up to handle the error code and invoke a specific password reset policy. Without the policy, the users will see "The user has forgotten their password" when they click on the "forgot password" link.

    If you are already using the correct version, could you please share your claims schema and technical profiles and verify that they match the guidance on the password reset custom policy page?

    https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-password-reset-policy?pivots=b2c-custom-policy

    Edited with additional comment from David Wong:

    The environment had content customization, so the template version set in the TrustFrameworkBase.xml version got overridden in TrustFrameworkExtensions.xml. Also, for all of us who need to use the new template, the localization string ID got changed, so you will have to adjust accordingly as well; see:
    https://learn.microsoft.com/en-us/azure/active-directory-b2c/localization-string-ids

    2 people found this answer helpful.

1 additional answer

Sort by: Most helpful
  1. David Wong 51 Reputation points
    2022-12-22T18:51:43.897+00:00

    @Marilee Turscak-MSFT 's answer was correct. My environment had content customization, so the template version set in the TrustFrameworkBase.xml version got overridden in TrustFrameworkExtensions.xml. Also, for all of us who need to use the new template, the localization string ID got changed, so you will have to adjust accordingly as well; see:
    https://learn.microsoft.com/en-us/azure/active-directory-b2c/localization-string-ids

    2 people found this answer helpful.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.