How to send forgot password code only to valid mobile numbers having account

Ronnie Kapoor 96 Reputation points

Hi Team,

I am using Azure AD B2C custom policies for sign in and sign up and uses mobile number to sign in a user.

In case of forgot password, what i want is that only those members should be able to receive the OTP code whose mobile number is registered with the application or have an account.

right now it is not working like this and is sending code any mobile number whatsoever.

Please help

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,761 questions
{count} votes