How do I fix a application registration

Mark Zacharias 0 Reputation points
2023-03-24T20:19:09.27+00:00

I've got a SaaS solution that offers SSO with your work accounts or hosting and account registration using Azure AD B2C.

I've got a Azure AD app registration that is setup as a OIDC identity provider in B2C. I've been able to login via the work account successfully. However, today I've been trying to setup some optional claims in the app registration and was having trouble getting those claims to show up, specifically the email claim. I tried to setup a claim map via Enterprise Applications > Single sign-on but this seems to have broken the link between AD and AD B2C. I'm now getting the following error message.

AADB2C90289: We encountered an error connecting to the identity provider. Please try again later. Correlation ID: 98764055-018d-4ff5-9c34-2cebfd5b9fae Timestamp: 2023-03-24 20:04:12Z

So far I've reverted the changes made via Enterprise Application, and regenerated the client secret but with no change.

What is the issue with B2C talking to AD via the OIDC provider?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,422 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. 2023-03-31T03:41:01.05+00:00

    Hello @Mark Zacharias , without further debugging it's hard to tell what could be the reason behind the AADB2C90289 error. Setting optional or claim mappings should not neccesarily cause that. My recommendation is to re-create the app registration and update your B2C setup. Regarding the email claim, create a custom policy and ensure to output it from both the claim provider and relying party technical profiles.

    Let us know if you need additional assistance. If the answer was helpful, please accept it and rate it so that others facing a similar issue can easily find a solution.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.