How to send forgot password code only to valid mobile numbers having account

Question

How to send forgot password code only to valid mobile numbers having account

Ronnie Kapoor 91

Hi Team,

I am using Azure AD B2C custom policies for sign in and sign up and uses mobile number to sign in a user.

In case of forgot password, what i want is that only those members should be able to receive the OTP code whose mobile number is registered with the application or have an account.

right now it is not working like this and is sending code any mobile number whatsoever.

Please help

Ronnie Kapoor 91 Reputation points

2020-12-11T12:34:55.223+00:00

@AmanpreetSingh-MSFT , can you please help sir ? looking forward for your response
Ronnie Kapoor 91 Reputation points

2020-12-11T12:35:26.793+00:00

@AmanpreetSingh-MSFT ,can you please help sir ? looking forward for your response
James Hamil 17,611 Reputation points Microsoft Employee

2020-12-12T00:43:50.383+00:00

Hi @Ronnie Kapoor , the best way to do this is by using self service password reset and integrating MFA. May I ask why you are using custom policies for this? It seems that your needs are covered this way. I can help you further with custom policies if needed, but I think this is a better option. Please let me know!

Thanks,
James
Ronnie Kapoor 91 Reputation points

2020-12-15T09:43:47.94+00:00

We are using custom policies because we have custom validations and drop downs in which data is populated from DB. We also have custom client side validations. So that's why we are using custom policies.

Is it possible to achieve via custom policies?
Ronnie Kapoor 91 Reputation points

2020-12-16T10:04:37.557+00:00

@James Hamil any update ?

Ronnie Kapoor 91 Reputation points

2020-12-11T12:34:55.223+00:00

@AmanpreetSingh-MSFT , can you please help sir ? looking forward for your response
Ronnie Kapoor 91 Reputation points

2020-12-11T12:35:26.793+00:00

@AmanpreetSingh-MSFT ,can you please help sir ? looking forward for your response
James Hamil 17,611 Reputation points Microsoft Employee

2020-12-12T00:43:50.383+00:00

Hi @Ronnie Kapoor , the best way to do this is by using self service password reset and integrating MFA. May I ask why you are using custom policies for this? It seems that your needs are covered this way. I can help you further with custom policies if needed, but I think this is a better option. Please let me know!

Thanks,
James
Ronnie Kapoor 91 Reputation points

2020-12-15T09:43:47.94+00:00

We are using custom policies because we have custom validations and drop downs in which data is populated from DB. We also have custom client side validations. So that's why we are using custom policies.

Is it possible to achieve via custom policies?
Ronnie Kapoor 91 Reputation points

2020-12-16T10:04:37.557+00:00

@James Hamil any update ?

How to send forgot password code only to valid mobile numbers having account

Activity