Azure Active Directory External Identities
An Azure service that is used to secure and manage customer and partner identities beyond organizational boundaries.
2,084 questions
How to send forgot password code only to valid mobile numbers having account
Ronnie Kapoor
91
Reputation points
Hi Team,
I am using Azure AD B2C custom policies for sign in and sign up and uses mobile number to sign in a user.
In case of forgot password, what i want is that only those members should be able to receive the OTP code whose mobile number is registered with the application or have an account.
right now it is not working like this and is sending code any mobile number whatsoever.
Please help
{count} votes
-
Ronnie Kapoor 91 Reputation points
2020-12-11T12:34:55.223+00:00 @AmanpreetSingh-MSFT , can you please help sir ? looking forward for your response
@AmanpreetSingh-MSFT ,can you please help sir ? looking forward for your response
Hi @Ronnie Kapoor , the best way to do this is by using self service password reset and integrating MFA. May I ask why you are using custom policies for this? It seems that your needs are covered this way. I can help you further with custom policies if needed, but I think this is a better option. Please let me know!
Thanks,
James
We are using custom policies because we have custom validations and drop downs in which data is populated from DB. We also have custom client side validations. So that's why we are using custom policies.
Is it possible to achieve via custom policies?
@James Hamil any update ?
Sign in to comment