The portal is having issues getting an authentication token. Azure AD B2C

Paul Kidd 21 Reputation points
2021-06-25T11:14:08.307+00:00

I can navigate to the Azure Resource and i am in the correct subscription
But when i click on the Azure AD B2C Settings icon i am navigated to a different subscription and have no access to the settings

Message>>
You do not have any Azure subscriptions in (subscription guid) different from the one i am in and not the one i expect to be in

Other Message>>
The portal is having issues getting an authentication token. The experience rendered may be degraded. Additional information from the call to get a token: Extension: Microsoft_AAD_IAM Resource: identity.diagnostics

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,678 questions
{count} votes

2 answers

Sort by: Most helpful
  1. AmanpreetSingh-MSFT 56,331 Reputation points
    2021-06-28T06:45:11.107+00:00

    Hi @Anonymous · Thank you for reaching out.

    This is expected. Azure AD B2C is created as a separate tenant than your regular corporate Azure AD tenant. The way subscriptions link to the standard Azure AD tenant is different than the way it is linked to the B2C tenant, which means if you have access to certain resources in your Azure AD tenant, the same resources will not be accessible when you switch to Azure AD B2C tenant.

    The reason is, B2C tenants are primarily used to host consumer identities for consumer facing applications and cannot be used to host your corporate infra resources such as VMs, Storage, VNets etc.

    -----------------------------------------------------------------------------------------------------------

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.


  2. Paul Kidd 21 Reputation points
    2021-07-08T10:13:07.36+00:00

    So what I hadn't realised was that I needed to be an actual user within the B2C AD.

    I added myself as a new guest user
    Then attempted to access it the B2C
    I was then given the opportunity to set up my Authenticator Account for B2C access.

    Once I was able to log in - I was able to access the full B2C as an admin. Nice.

    I now have 3 separate accounts for dev, uat and prod.

    The error I was getting without access was a little confusing, but now realise that this is the default error when you have no access to a resource.

    hope this helps

    0 comments No comments