Define custom email alias for b2b user to login - Azure AD External Identities

Mateusz Jendza 21 Reputation points
2021-12-30T14:33:05.86+00:00

I want to solve issue with B2B user flow when I use the External Identity Provider (like AWS Cognito, Auth0) to federate users with Azure AD.

There is information https://learn.microsoft.com/en-us/azure/active-directory/authentication/howto-authentication-use-email-signin that with Proxy address I can add the alias to the user account - to be able to login in the Service Providers.

What I want to achieve is to be able to login with my gmail - mateusz@Stuff .com account to the resources like OneDrive or PowerBI - but via External Identity Provider like Cognito. So, the user is from my Cognitio IDP integrated via SAML - but in my IDP the email address can be from any domain.

Is there any scenario that I can see in service providers like OneDrive or PowerBI the real user email and use this 'real' user email with login process?

Microsoft Security | Microsoft Entra | Microsoft Entra External ID
{count} votes

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.