Can I only use oAuth2 without openIDconnect to authenticate a multi-tenant application or a single signin ?

Asmaa Essa 20 Reputation points

I'm about to allow Azure Active Directory

federated single sign-on on my web Api and I'm using OAuth without OpenID connect and all the examples I in the document it has both so should I use both or I can continue without changing my authentication code?

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,114 questions
Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,466 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
17,598 questions
0 comments No comments
{count} votes

Accepted answer
  1. Alfredo Revilla (MSFT) 25,271 Reputation points Microsoft Employee

    Hello @Asmaa Essa , both Microsoft Entra ID (formerly Azure AD) and Azure AD B2C use Open ID Connect for authentication and OAuth2 for authorization. The former protocol is used to acquire an ID token, the latter an access token.

    Let us know if you need additional assistance. If the answer was helpful, please accept it and rate it so that others facing a similar issue can easily find a solution.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful