Where do I find documentation or tools for newbies trying to create an Azure Active Directory B2C Policy?

Sujay V. Sarma 1 Reputation point
2022-07-13T12:57:46.85+00:00

Creating a new Azure Active Directory B2C Policy by hand is cumbersome. The Starter Kit files contain a lot of junk. If you are trying to create a specific list of providers and claim transformations, the documentation assumes you are already at a Pro level.

Would appreciate one of:

ONE: A proper detailed walkthrough of hand-editing or creating a policy for all of the IDPs currently supported. At the end of the entire walkthrough, the desired result is a set of policy files that work for all currently supported IDPs.

This walkthrough would also take care of dependencies between some of the things (Technical Profiles and what not). These are a mess to currently understand for a newbie.

TWO: Some kind of a tool that allows users to key in / select what is required and get at least a basic working set. "Advanced" things like claim transformations can be left to documentation and need not be "tool-ized".

Finally, if the team can add an "Export Current Settings as a Policy" option on the Azure B2C IDP configuration blade (or another suitable tab) so that we can configure some things via the Portal, export it and then use a tool or hand-craft the remaining customization. This is severely missing !

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,576 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Alfredo Revilla (MSFT) 26,756 Reputation points
    2022-07-14T04:04:03.87+00:00

    Hello @Sujay V. Sarma , it's true custom policies coding can seem complex due being all XML. They are after all recommended for advanced scenarios. However, once you get to know more about their structure and way of working you will find they offer a powerful platform for developing all kind of user flows. I suggest you go through the following documents:

    1. Tutorial: Create user flows and custom policies in Azure Active Directory B2C: Includes both Local and Facebook accounts (and IdP).
    2. Add an identity provider to your Azure Active Directory B2C tenant: Includes all other IdPs.

    To edit the policies use Visual Studio Code plus the Azure AD B2C tools. They support B2C specific intelligent suggestion, auto-completion, smart edit, multi-environment (test, prod, uat, etc) and template processing.

    For detailed information on how the policies are built and work take a look to Understanding the basics and to Local and social accounts sign-up or sign-in user journey overview.

    Let us know if this answer was helpful to you or if you need additional assistance! If it was helpful, please accept it and complete the quality survey so it helps other community users facing similar issues.