Azure B2C Custom Policy MFA (Phone or Text) Replaces Email in Authentication contact info

Kevin Guan 30 Reputation points
2023-02-21T15:23:05.19+00:00

Flow in my B2C Custom Policy

  1. User creates an account with email
  2. User goes to email to validate account
  3. User Signs back in
  4. User is enrolled in MFA with their phone number (call or text)

Issue

When the user enroll in the MFA with their phone number, the phone number gets added into the Authentication contact info and the email address is removed. I need to keep the email address as it is needed for the 'Forgot password flow'.

Microsoft Security | Microsoft Entra | Microsoft Entra ID
{count} votes

1 answer

Sort by: Most helpful
  1. Marilee Turscak-MSFT 37,206 Reputation points Microsoft Employee Moderator
    2023-02-28T04:23:40.12+00:00

    Hi Kevin Guan,

    Update from the product team after confirming:

    There is indeed a limitation with local accounts that have the combined sign-in methods and there is an open work item to resolve this. The ability to reset passwords only applies to local accounts that do not have combined sign-in methods (i.e. Email + Phone).

    Let me know if you have further questions though. I'll be happy to relay feedback to the product team on your behalf.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.