Tenant names and Tenant Domains and Org names Confusion: Questions on AAD B2C Tutorials

Siegfried Heintze 1,861 Reputation points
2020-04-15T17:39:23.92+00:00

I'm trying to follow the tutorials to demonstrate Azure AD B2C. I started with tutorial-create-tenant

  1. I have a default directory and now I have "linked an existing Azure AD B2C Tenant" so now I have two directories. Why cannot I just create the Azure-AD-B2C-Tenant in my default directory?
  2. I need help understanding what a tenant is. How many kinds of tenants are there? Is there such a thing as an AAD tenant that is different than an AAD B2C tenant? Is my newly created AAD B2C tenant different that the newly created directory?
  3. When do I need to create a new tenant?
  4. When do I need to create a new directory and link it to my subscription? Why is it not linked by default?
  5. So I'm on the web page for my Azure AD B2C and I see the domain name. When I created it, I entered an Organization name and I don't see that here. I see my Organization name when I want to switch directories? Please confirm that this is the organization name I see when selecting a directory to switch to.
  6. What do they mean by your "B2C-tenant-name" in step 7 at tutorial-add-identity-providers. Is there a powershell/az script I can use to learn this? Is this the organization name or the domain name or something else?
  7. What do they mean by "your-tenant-name" in step 9 and 16 at tutorial-add-identity-providers? Is the "your-tenant-name" the name of my aad-b2c-tenant? Is there a powershell/az script I can run to confirm this value?
  8. What do they mean by "your-AD-tenant-domain" in step 5 of tutorial-add-identity-providers . Is there an powershell/az script to confirm this value? Please confirm that this is the domain name listed at the top of the "Azure AD B2C" page.
Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,652 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. AmanpreetSingh-MSFT 56,311 Reputation points
    2020-04-17T15:05:31.107+00:00

    @Siegfried Heintze , Please find the answers inline below:

    • I have a default directory and now I have linked an existing Azure AD B2C Tenant so now I have two directories. Why cannot I just create the Azure-AD-B2C-Tenant in my default directory?

    Azure AD B2C has to be a separate directory as it has some additional features and certain limitations as compared to standard Azure AD.

    • I need help understanding what a tenant is. How many kinds of tenants are there? Is there such a thing as an AAD tenant that is different than an AAD B2C tenant? Is my newly created AAD B2C tenant different that the newly created directory?

    A tenant is nothing but the directory that you create. There are 2 types of tenants Azure AD tenant and Azure AD B2C tenant. The newly created B2C tenant and directory are same. The term directory and tenant represent same thing.

    • When do I need to create a new tenant?

    When you need a new directory to store your identities, like users, groups, applications and so on.

    • When do I need to create a new directory and link it to my subscription? Why is it not linked by default?

    Subscription contain resources and directory contain identities. You link subscription to directory to allow appropriate identities to access the resources.

    • So I'm on the web page for my Azure AD B2C and I see the domain name. When I created it, I entered an Organization name and I don't see that here. I see my Organization name when I want to switch directories? Please confirm that this is the organization name I see when selecting a directory to switch to.

    Organization Name is the display name of your tenant. You can change it by navigating to Azure Portal > Azure AD > Properties and change the name attribute.

    • What do they mean by your B2C-tenant-name in step 7 at tutorial-add-identity-providers. Is there a powershell/az script I can use to learn this? Is this the organization name or the domain name or something else?

    While creating B2C directory, you must have specified a domain name, e.g., myorg which gets appended with .onmicrosoft.com domain. So, in the above document, B2C-tenant-name means myorg, not myorg.onmicrosoft.com or the organization name.

    • What do they mean by your-tenant-name in step 9 and 16 at tutorial-add-identity-providers? Is the your-tenant-name the name of my aad-b2c-tenant? Is there a powershell/az script I can run to confirm this value?

    Same as previous answer.

    • What do they mean by your-AD-tenant-domain in step 5 of tutorial-add-identity-providers . Is there an powershell/az script to confirm this value? Please confirm that this is the domain name listed at the top of the Azure AD B2C page.

    In this case, we are federating an Azure AD tenant with Azure AD B2C tenant to allow users of another Azure AD Tenant to signup/signin to B2C tenant. So, it would be the tenant domain name of the other Azure AD and not B2C.

    There are PowerShell cmdlets to confirm the same but that would be lengthy process. Easiest way to identify the tenant name is by looking at its domain name. Which means if the domain name of the tenant is xyz.onmicrosoft.com, the tenant name would be xyz.

    Hope I covered all your questions.

    -----------------------------------------------------------------------------------------------------------

    Please "Accept as answer" wherever the information provided helps you to help others in the community.

    1 person found this answer helpful.
    0 comments