Azure Active Directory Redeem URL

Bui Nguyen Viet Quy (FDN.FIN5) 0 Reputation points
2023-04-20T08:59:42.5533333+00:00

Hi, I'm using Active Directory and with a basic code like this


var invitation = new Invitation()
{
    InvitedUserEmailAddress = companyEmail,
    InviteRedirectUrl = inviteRedirectUrl
};
var invitationResult = await _graphServiceClient.Invitations.Request().AddAsync(invitation);

If I use my ognization email domain for registration, Redeem URL redirected to sign up page: MicrosoftTeams-image

=> Correct But, Gmail is not same, It redirected to sign in page in stead. MicrosoftTeams-image (1)

So my question is What I have to do to Gmail Redeem URL redirect to sign up page in stead of sign in URL.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,773 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Marilee Turscak-MSFT 34,546 Reputation points Microsoft Employee
    2023-04-25T00:37:37.3366667+00:00

    Hi @Bui Nguyen Viet Quy (FDN.FIN5) ,

    Thanks for your post!

    If you specify the inviteRedirectUrl in the request body you will be able to customize where you want your users to land after redemption, but you cannot change the navigation of the inviteRedeemUrl.

    https://learn.microsoft.com/en-us/azure/active-directory/external-identities/customize-invitation-api

    https://learn.microsoft.com/en-us/graph/api/invitation-post?view=graph-rest-1.0&tabs=http

    Note that Google has deprecated embedded web-view sign-in support so if your apps apps authenticate users with an embedded web-view and you're using Google federation, Google users won't be able to authenticate. The redemption flow for Gmail users requires them to enter a code in a separate browser window to finish signing in on Microsoft Teams mobile and desktop clients. This applies to invited guests and guests who signed up using Self-Service Sign-Up. https://learn.microsoft.com/en-us/azure/active-directory/external-identities/google-federation

    If an admin has enabled Google federation, Azure AD checks if the user’s domain suffix is gmail.com, or googlemail.com and redirects the user to Google.

    https://learn.microsoft.com/en-us/azure/active-directory/external-identities/redemption-experience

    Let me know if this explanation helps and if you have further questions. The redemption flow for Google users does have some additional variables to consider.

    If the information helped you, please Accept the answer. This will help us as well as others in the community who may be researching similar questions.

    1 person found this answer helpful.
    0 comments No comments