Azure AD B2C Custom Policy | How can we change AccountEnabled status for new external identity provider user (SSO user) to True when user is created/signed up through custom policy flow.

Kiran Zende 85 Reputation points
2024-03-19T10:46:24.7766667+00:00

Hi Team,

We are using Azure AD B2C custom policy to create external identity provider user (SSO user) in B2C.

We have integrated Microsoft Azure AD, OneLogin, Okta, Salesforce as external identity providers. And users are successfully getting created for all of these identity providers by custom policy flow.

However, new B2C user is getting created with AccountEnabled status as False. We want this status to be set as True when custom b2c policy is creating new user.

We tried setting up AccountEnabled status claim as True in different technical profiles.

Also tried adding "AssertAccountEnabledIsTrue" claims transformation in "AAD-UserReadUsingAlternativeSecurityId" technical profile.

However, failed to change the value of AccountEnabled attribute.

Please help us to understand the behavior of B2C custom policies with external identity providers and resolve this issue.

Thank you for the help in advance!

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,517 questions
0 comments No comments
{count} vote

Accepted answer
  1. Babafemi Bulugbe 3,785 Reputation points MVP
    2024-03-19T11:29:06.2233333+00:00

    Hello @Kiran Zende

    AccountEnabled status is set to false for accounts created without passwords which applies to external IdP Accounts. Only Local accounts users will get their account set to true during SignUp process.

    Setting the AccountEnabled status to true wont work as this is controlled by B2C itself. You might want to create a custom attribute (extension_accountEnabled) for this purpose.

    For more information, go through the information on this link which might help.

    Let me know if further assistance is required

    2 people found this answer helpful.

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.