Share via

Azure ADB2C | Custom Policy

Abhay Chandramouli 1,061 Reputation points
2023-12-20T08:46:46.7533333+00:00

HI

We are using adb2c custom policies. I need to know if custom policies internally use and consume graph api limits ?

Our custom policy updates some user info apart from logging the user in during login flow and simply creates a user during sign up

So just wanted to makes sure the updates are consuming graph api limits or not ?

Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Security | Microsoft Graph
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. liam 75 Reputation points
    2023-12-20T08:50:24.0566667+00:00

    Yes, custom policies in Azure AD B2C (adb2c) can internally use and consume Graph API limits, depending on the operations performed within the policies. In your case, where custom policies are utilized to update user information during the login flow and create users during the sign-up process, it's likely that Graph API calls are being made.

    Azure AD B2C relies on Microsoft Graph API for various identity operations. Any custom policies that involve user updates or creations typically translate to corresponding Graph API calls. Therefore, it's important to be aware of and manage the Graph API rate limits to avoid potential issues related to throttling.

    To ensure the efficient use of Graph API and prevent exceeding limits, consider optimizing the custom policies by minimizing unnecessary calls, batching operations where possible, and caching data when appropriate. Regular monitoring and understanding the specific Graph API operations performed within the custom policies will help manage and stay within the allowed limits.
    I hope so this help you!!

  2. Alfredo Revilla - Upwork Top Talent | IAM SWE SWA 27,536 Reputation points Moderator
    2023-12-31T20:58:14+00:00

    Hello @Abhay Chandramouli , Azure AD B2C internals are not documented. It might consume Microsoft Graph, however even in the case it does, the more important or early limits you may face are outlined at Azure Active Directory B2C service limits and restrictions which also includes formulas to calculate requests/second and a Best practices section.

    For more information about the limits your own Azure AD B2C calls to Microsofr Graph may face, take a look at Microsoft Graph service-specific throttling limits.

    Let us know if you need additional assistance. If the answer was helpful, please accept it and rate it so that others facing a similar issue can easily find a solution.

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.