Managed Identity/Certificate for Azure AD B2C API connector

Ankur Singla 21 Reputation points

We are using Azure AD B2C API connector to call an Azure Function (to populate the AppRoles in the claims) which is protected by a certificate. Right now the certificate that can be configured in the API connector has to be uploaded manually everytime it expires.
Also while using custom policy, the client certificate has to be uploaded manually under the policy keys (under Identity Experience Framework) which adds the overhead to rotate the certificates manually.
Are they any plans to support managed certificates directly from Azure Key Vault?

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,102 questions
Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,633 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,394 questions
0 comments No comments
{count} votes

Accepted answer
  1. AmanpreetSingh-MSFT 56,301 Reputation points

    Hi @Ankur Singla • Thank you for reaching out.

    I checked with the B2C product team for this. Unfortunately, there are no plans to support managed certificates directly from Azure Key Vault in the Azure AD B2C roadmap.

    I would suggest you post an idea at User Voice Portal which is monitored by the product group for feature enhancements.


    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

0 additional answers

Sort by: Most helpful