![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 89%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERW%3C/text%3E%3C/svg%3E)
25,081 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAV%3C/text%3E%3C/svg%3E)
Hi @Ron Windle
Thanks for posting your question in the Microsoft Q&A forum.
For your query, I understand that you would like to know differences between Azure B2C and Entra External IDs, focusing on their security features and logging capabilities.
Azure AD B2C provides identity protection features, such as risk-based conditional access policies and the ability to detect and respond to risky sign-ins. This includes the ability to block or allow access based on the risk level of the sign-in.
Microsoft Entra External IDs have its own set of security features for identity protection, risk detectiona and adaptive access policies. but the specific information would depend on the implementation and configuration of the solution.
To answer your first questions, In Azure B2C attribute a sign-in to a user account by using user attributes. During the sign-up or sign-in process, you can collect user attributes such as city, job title, or a custom attribute like a loyalty ID. These attributes are stored with the user’s profile in the directory.
For Entra External IDs you can also attribute a sign-in to a user account by using user attributes. You can choose from built-in user attributes or create custom user attributes, you can add these attributes at the tenant level so they can be used in any user flow in the tenant.
Regarding your second question, the log events in Azure AD B2C and Entra External IDs are different because they are designed for different use cases. Azure AD B2C provides audit logs for user sign-ins, user management, and application management. Entra External IDs provides audit logs for identity governance, including access reviews, role assignments, and policy changes.
Both Azure AD B2C and Entra External IDs provide audit logs for user sign-ins and user management, but Entra External IDs is designed for identity governance and provides additional audit logs for access reviews, role assignments, and policy changes.
Reference: https://learn.microsoft.com/en-us/entra/external-id/customers/faq-customers
https://learn.microsoft.com/en-us/entra/external-id/external-identities-overview
https://learn.microsoft.com/en-us/azure/active-directory-b2c/user-profile-attributes
Thanks,
Akhilesh.
Hope this helps. Do let us know if you any further queries.
If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.