Share via

Email claim sometimes missing in B2C tokens

Serpa 176 Reputation points
May 24, 2021, 9:26 AM

I'm using custom policies with B2C and sometimes I don't receive the email claim in id_token and access_token.
Most of the times it comes correctly, but a few times the claim is missing.

Any reason why this might be happening?

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
3,002 questions
0 comments No comments
{count} votes

Accepted answer
  1. AmanpreetSingh-MSFT 56,731 Reputation points
    May 24, 2021, 11:44 AM

    Hi @Serpa · Thank you for reaching out.

    You need to check which user flow was used for token issuance. E.g. users may get a token after profile edit and password reset user flow as well. In that case, you would need to configure output claim for email in the xml of these user flows as well. Please try to reproduce the issue by editing profile and/or resetting password.

    Also check if you are using a policy that allows you to signup/sign-in using both phone & email, and you don't get email claim when you sign-in using phone number

    Identifying a pattern would help in this case.

    -----------------------------------------------------------------------------------------------------------

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.