How to migrate from Existing CIAM to Azure B2C

TUHIN SINHA 20 Reputation points
2023-06-01T01:33:21.4+00:00

Client IDP and internal CIAM tool IDP with setup with SP initiated.

There are other configuration in existing CIAM.

If we plan to migrate from existing CIAM system to Azure b2c , what is the recommended tool or approach so we can avoid to re-configure all the existing setup with the ClientIDP ?

We would like to have seamless migration to Azure b2c.

·         Mobile Integration : Considering Azure b2c needs to redirect to external IDP and considering different flow, What are the prerequisite for mobile app in IOS or android to be integrated with Azure B2C ?. Current system is using API for registration and login. Can we leverage Microsoft graph Ui for login and registration for local user ?

·         Migrate Client secret : Can we migrate existing OIDC clientid / client secret from Secure Auth to AzureB2C ? Whether OIDC setup need to be re-establish with the vendor ?

·         Password hash from Azure b2c : If we need to migrate from Azure B2C to any other CIAM , can we migrate Password hash / salt to the new CIAM if required ?  

·         Environment : Do we need to setup new tenant for each environment ?

·         Data Refresh : Can we refresh data from production environment and perform masking of the specific field ?

Please let us know if that is possible.

Thanks

Tuhin

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,655 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,587 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Alfredo Revilla - Upwork Top Talent | IAM SWE SWA 27,246 Reputation points
    2023-06-26T23:19:36.1433333+00:00

    Hello @TUHIN SINHA , you will find my answers to your questions below them.

    • Mobile Integration : Considering Azure b2c needs to redirect to external IDP and considering different flow, What are the prerequisite for mobile app in IOS or android to be integrated with Azure B2C ?. Current system is using API for registration and login. Can we leverage Microsoft graph Ui for login and registration for local user?
      Take a look to Enable authentication in your own Android app by using Azure AD B2C and Enable authentication in your own Android app by using Azure AD B2C
    • Migrate Client secret : Can we migrate existing OIDC clientid / client secret from Secure Auth to AzureB2C ? Whether OIDC setup need to be re-establish with the vendor?
      Client ids are auto-generated in Azure AD B2C so those cannot be migrated. You may implement a mapping table between your old and new ids. Client secrets can however it's not recommended.
    • Password hash from Azure b2c : If we need to migrate from Azure B2C to any other CIAM , can we migrate Password hash / salt to the new CIAM if required?
      No, this is not possible. However you can read user credentials trough User migration.
    • Environment : Do we need to setup new tenant for each environment?
      Yes, this is a common practice.
    • Data Refresh : Can we refresh data from production environment and perform masking of the specific field?
      What do you mean with this?

    Also, take a look to Migrate users to Azure AD B2C, Manage Azure AD B2C with Microsoft Graph and SecureAuth IdP API Documents.

    Let us know if you need additional assistance. If the answer was helpful, please accept it and rate it so that others facing a similar issue can easily find a solution.

    0 comments