Microsoft Q&A

Azure Active Directory External Identities

2,206 questions

An Azure service that is used to secure and manage customer and partner identities beyond organizational boundaries.

2,206 questions with Azure Active Directory External Identities-related tags

Sort by: Updated
1 answer

API connector in a user flow for Azure B2B external identities

Is it possible to run custom business logic (e.g. some Graph API calls) using an API connector before sending the token (during sign-ins)? If not, is this something which is on the roadmap?

Azure Active Directory External Identities
asked 2022-02-14T16:06:13.693+00:00
Vlietinck, Arne 1 Reputation point
edited the question 2023-06-03T03:47:08.9466667+00:00
Shweta Mathur 15,066 Reputation points Microsoft Employee
1 answer

How aad b2c api connector integrate to springboot project

Pushed a springboot project docker image and developed in app service,how can i use api connector to call springboot api,is there a code sample?

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,743 questions
Azure Active Directory External Identities
asked 2023-05-26T07:13:50.88+00:00
HuangWei 1 Reputation point
commented 2023-06-03T03:45:15.5066667+00:00
Shweta Mathur 15,066 Reputation points Microsoft Employee
2 answers One of the answers was accepted by the question author.

Encoding Issues in B2C Custom Policies

We are facing encoding issues in our B2C custom policies, even after updating all ContentDefinition DataUri to the latest templates. The problems arise in the signinup and password reset custom policies, where characters like "ä" are not…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
604 questions
Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,743 questions
Azure Active Directory External Identities
asked 2023-05-31T11:36:41.95+00:00
Teun Dozeman 25 Reputation points
edited the question 2023-06-03T03:38:26.8133333+00:00
Shweta Mathur 15,066 Reputation points Microsoft Employee
1 answer

SharePoint guest user sign-in error - AADSTS50177

Hello, I am working to grant access to a guest user to my tenant so they can access a SharePoint site. I have created the guest user, invited the user, and set their permissions on the specific SharePoint site. When they go to sign in, they get the…

Azure Active Directory External Identities
asked 2023-05-09T13:35:53.52+00:00
J$ 0 Reputation points
commented 2023-06-02T21:46:46.4933333+00:00
James Hamil 14,346 Reputation points Microsoft Employee
2 answers

Requesting Assistance with Granting Read-only Permissions for Views in Azure SQL Serverless Pool to Guest User in a Canvas App

Hello Azure Community, I am currently working on a project that involves granting read-only permissions for views on the database level (SQL Serverless Pool) to a guest user in a Canvas app. However, I have encountered a challenge in determining the…

Azure SQL Database
Azure Synapse Analytics
Azure Synapse Analytics
An Azure analytics service that brings together data integration, enterprise data warehousing, and big data analytics. Previously known as Azure SQL Data Warehouse.
3,109 questions
Azure Active Directory External Identities
asked 2023-05-30T16:02:51.6833333+00:00
Nicole Inman 1 Reputation point
commented 2023-06-02T17:39:53.5833333+00:00
Oury Ba-MSFT 11,371 Reputation points Microsoft Employee
0 answers

How to migrate from Existing CIAM to Azure B2C

Client IDP and internal CIAM tool IDP with setup with SP initiated. There are other configuration in existing CIAM. If we plan to migrate from existing CIAM system to Azure b2c , what is the recommended tool or approach so we can avoid to re-configure…

Azure Active Directory External Identities
Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,743 questions
asked 2023-06-01T01:33:21.4+00:00
TUHIN SINHA 20 Reputation points
commented 2023-06-02T14:16:56.32+00:00
TUHIN SINHA 20 Reputation points
1 answer One of the answers was accepted by the question author.

How do I configure multiple SSO IdPs in Azure AD B2C?

I have an application that uses AD B2C for authentication. I need to allow external IdPs to authenticate via SSO into my application via ADB2C. I followed the steps in this documentation and it worked well for one IdP.…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,743 questions
Azure Active Directory External Identities
asked 2022-05-24T20:46:25.097+00:00
Stephanie Akpakoun 26 Reputation points
commented 2023-06-02T12:58:02.6766667+00:00
Rafael Caviquioli 20 Reputation points
0 answers

My account is locked when trying to access Azure portal

When I try to Access Azure Portal, it shows that my account is locked, How do I unlock it

Azure Active Directory External Identities
asked 2023-06-02T11:55:49.8066667+00:00
Qfba Support 0 Reputation points
0 answers

Azure B2C Federated user login - Missing email and UPN

Hi, I'm using B2C federation with external AAD. The user doesnt have any email address in external Azure AD but has UPN value. However, in B2C once the user logs it does create a user profile but with empty fields for userPrincipalName and email.…

Azure Active Directory External Identities
asked 2022-07-05T02:06:51.187+00:00
robcool 91 Reputation points
commented 2023-06-02T11:33:08.79+00:00
Rafał Ośko 0 Reputation points
1 answer

Delete signInNames.emailAddress from a federated AD B2C user

Hey guys, I am having a hard time trying to delete the signInNames.emailAddress attribute from a federated user using custom policies. I've already tried to remove it by using a technical profile to update the signInNames.emailAddress with a null claim,…

Azure Active Directory External Identities
asked 2022-11-03T12:05:30.833+00:00
Alvaro Roberto 1 Reputation point
commented 2023-06-02T09:30:15.12+00:00
Molnár Dávid 0 Reputation points
1 answer

Azure AD B2C - Administrator changes the password, user not able to login to application

We are using custom policies to login to our application. Now, we have a scenario where the admin reset passwords for the users using the Azure ADB2C blade. But, the user is not able to login to the application when trying to use the temporary password…

Azure Active Directory External Identities
asked 2023-05-05T08:00:23.3733333+00:00
Sakthi 121 Reputation points
answered 2023-06-02T04:20:54.9666667+00:00
Alfredo Revilla (MSFT) 18,676 Reputation points Microsoft Employee
1 answer

Max length of "sub" in ID token

I found that I can user the field "sub" in the ID token as the user identifier from this document: https://learn.microsoft.com/en-us/azure/active-directory/develop/id-tokens However, I cannot find the max length of the "sub" field…

Azure Active Directory External Identities
asked 2023-05-30T02:03:40.8633333+00:00
Kam Shing Cheung 0 Reputation points
commented 2023-06-01T21:45:53.3133333+00:00
James Hamil 14,346 Reputation points Microsoft Employee
13 answers

AAD B2C - "Lag" after custom policy upload

Hi everyone, when I upload a new version of a custom policy it takes a varying amount of time (from a few seconds to five minutes) until the new version is used. During development this is very frustrating and time-consuming since I either have to…

Azure Active Directory External Identities
asked 2022-10-20T13:31:47.487+00:00
Maximilian Bürgi 101 Reputation points
commented 2023-06-01T20:59:32.9166667+00:00
Marilee Turscak-MSFT 24,311 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

Client IDP Send à SAML Response -> Azure B2C (SP) -> Consume SAML Response

Client IDP : External IDP initiating the IDP flow. (Not Azure B2C any external IDP ) Azure B2C : Acting as Service Provider We are looking for below IDP Flow in terms of Client IDP supporting IDP initiated flow. The originator is Client IDP. Client IDP…

Azure Active Directory External Identities
asked 2023-05-30T17:27:15.6166667+00:00
TUHIN SINHA 20 Reputation points
accepted 2023-06-01T11:00:54.88+00:00
TUHIN SINHA 20 Reputation points
3 answers One of the answers was accepted by the question author.

UPN different between Graph API and Azure Portal

I am using an AD B2C with applications that can receive connections from both a trusted AD or local accounts. The UPN I see in the Azure Portal (from both local and external accounts) are classical email addresses, and the UPN I recieve from graph API…

Microsoft Graph Users API
Microsoft Graph Users API
A Microsoft API that allows you to build compelling app experiences based on users, their relationships with other users and groups, and the resources they access for example their mails, calendars, files, administrative roles, group memberships.
726 questions
Microsoft Graph Identity API
Microsoft Graph Identity API
A Microsoft API to access Azure Active Directory (Azure AD) resources to enable scenarios like managing administrator (directory) roles, inviting external users to an organization, and, if you are a Cloud Solution Provider (CSP), managing your customer's data.
285 questions
Azure Active Directory External Identities
asked 2021-09-30T07:35:24.32+00:00
Benoit Hoffman 51 Reputation points
answered 2023-05-31T14:00:52.1266667+00:00
Giel Oomen 16 Reputation points
1 answer

External Identities Flow : Is a custom sign up application is necessarily required?

Hello, We are using External Identities to manager our customers. We have a website which uses Azure AD via SAML for users authentication. We want to add the ability for a user to self-register. We enabled self-service sign up and create the…

Azure Active Directory External Identities
asked 2023-05-30T09:43:37.4033333+00:00
75969757 0 Reputation points
answered 2023-05-31T10:13:13.01+00:00
Alfredo Revilla (MSFT) 18,676 Reputation points Microsoft Employee
2 answers

Need to create same App Registration for Parent tenant and Nested B2C tenant

Hello All, I'm dealing with some odd challenges because we have three tenants: 1. ABC.com 2. abc.onmicrosoft.com (a subdomain of ABC.com) 3. B2C tenant (established under abc.msn.com). We have a requirement where we need to configure one App Registration…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,743 questions
Azure Managed Applications
Azure Managed Applications
An Azure service that enables managed service providers, independent software vendors, and enterprise IT teams to deliver turnkey solutions through the Azure Marketplace or service catalog.
73 questions
Azure Active Directory External Identities
asked 2023-05-03T05:59:53.6266667+00:00
shashanksaxena-6941 86 Reputation points
commented 2023-05-31T09:18:58.1533333+00:00
Akshay-MSFT 5,916 Reputation points Microsoft Employee
1 answer

Open PowerBI page from external IdP-initiated SSO

On my AzureAD tenant I added WSO2 as SAML2 external identity provider. On the same tenant, I created a PowerBI report and I linked it in an internal application we use. In that application the users are logged in with their WSO2 account. When they click…

Azure Active Directory External Identities
asked 2023-05-24T09:49:05.49+00:00
Giacomo Bianco 0 Reputation points
answered 2023-05-31T09:16:45.38+00:00
Alfredo Revilla (MSFT) 18,676 Reputation points Microsoft Employee
1 answer

Azure AD B2C Integration

Hi Team, Our application is undergoing improvements, and we now intend to transfer the authentication services to Azure AD B2B/B2C. But before we get started, there are a few things we need to make clear. After reading the related  documentation, we…

Azure Active Directory External Identities
asked 2023-05-29T11:00:48.81+00:00
Aneesh Kumar 0 Reputation points
commented 2023-05-31T09:02:00.7533333+00:00
Akshay-MSFT 5,916 Reputation points Microsoft Employee
2 answers

Does Azure AD B2B works with Okta ?

Hi, will Azure AD work for B2B user's if we have federation enabled with okta ? We have Okta as primary IdP. Is there any issue or limitation when Okta is in-place and Azure AD b2b federation is enabled ?

Azure Active Directory External Identities
asked 2023-05-22T23:00:51.4133333+00:00
Rahul 226 Reputation points
edited the question 2023-05-31T06:03:59.19+00:00
Akshay-MSFT 5,916 Reputation points Microsoft Employee