This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 44%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESV%3C/text%3E%3C/svg%3E)
Creating a new Azure Active Directory B2C Policy by hand is cumbersome. The Starter Kit files contain a lot of junk. If you are trying to create a specific list of providers and claim transformations, the documentation assumes you are already at a Pro level.
Would appreciate one of:
ONE: A proper detailed walkthrough of hand-editing or creating a policy for all of the IDPs currently supported. At the end of the entire walkthrough, the desired result is a set of policy files that work for all currently supported IDPs.
This walkthrough would also take care of dependencies between some of the things (Technical Profiles and what not). These are a mess to currently understand for a newbie.
TWO: Some kind of a tool that allows users to key in / select what is required and get at least a basic working set. "Advanced" things like claim transformations can be left to documentation and need not be "tool-ized".
Finally, if the team can add an "Export Current Settings as a Policy" option on the Azure B2C IDP configuration blade (or another suitable tab) so that we can configure some things via the Portal, export it and then use a tool or hand-craft the remaining customization. This is severely missing !
Hello @Sujay V. Sarma , it's true custom policies coding can seem complex due being all XML. They are after all recommended for advanced scenarios. However, once you get to know more about their structure and way of working you will find they offer a powerful platform for developing all kind of user flows. I suggest you go through the following documents:
To edit the policies use Visual Studio Code plus the Azure AD B2C tools. They support B2C specific intelligent suggestion, auto-completion, smart edit, multi-environment (test, prod, uat, etc) and template processing.
For detailed information on how the policies are built and work take a look to Understanding the basics and to Local and social accounts sign-up or sign-in user journey overview.
Let us know if this answer was helpful to you or if you need additional assistance! If it was helpful, please accept it and complete the quality survey so it helps other community users facing similar issues.
Some of the content at those links sound outdated. For example:
https://learn.microsoft.com/en-us/azure/active-directory-b2c/tutorial-create-user-flows?pivots=b2c-custom-policy#register-identity-experience-framework-applications
Are these 2 registrations required? On the left pane of my B2C, I see an entry titled "Identity Experience Framework", is this the same as the app this section asks me to register?
---
And then there is the question of these two keys:
https://learn.microsoft.com/en-us/azure/active-directory-b2c/tutorial-create-user-flows?pivots=b2c-custom-policy#add-signing-and-encryption-keys-for-identity-experience-framework-applications
In later documentation that talks about the policies for each IDP, the names used are very confusing. Not to mention that the tags in the Xml where these values are supposed to go are even further confusing.