Microsoft Q&A

Azure Active Directory External Identities

2,211 questions

An Azure service that is used to secure and manage customer and partner identities beyond organizational boundaries.

2,211 questions with Azure Active Directory External Identities-related tags

Sort by: Updated
0 answers

How to call an Azure AD protected API from an Azure AD B2C protected API and vice versa?

I have two APIs: API A and API B. We also have client apps SPA A and SPA B which communicate with API A and API B respectively. I now want to configure communication between API A and API B. API A is registered as an application in Azure AD B2C. Only…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,892 questions
Azure Active Directory External Identities
asked 2023-06-07T09:41:01.72+00:00
73995789 0 Reputation points
commented 2023-06-08T23:21:35.8933333+00:00
James Hamil 14,431 Reputation points Microsoft Employee
1 answer

Where can I find Azure Active Directory B2B documentation

I can find the B2C documentation but I am getting a 404 error when looking up B2B documentation. Is it available in online anywhere? I am not able to find it.

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,892 questions
Azure Active Directory External Identities
asked 2023-06-06T14:24:16.4133333+00:00
valjas 20 Reputation points
commented 2023-06-08T18:31:07.62+00:00
JamesTran-MSFT 29,806 Reputation points Microsoft Employee
1 answer

Integrating Biometric Login in Azure AD B2C

We want to implement biometric based login for iOS and Android applications using Azure AD B2C. We found this article/documentation: Configure Transmit Security with Azure Active Directory B2C for passwordless authentication We are trying to achieve…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,892 questions
Azure Active Directory External Identities
asked 2023-06-05T09:39:25.6066667+00:00
Jitesh Acharya 0 Reputation points
answered 2023-06-06T09:51:29.7666667+00:00
Akshay-MSFT 5,996 Reputation points Microsoft Employee
1 answer

My account is locked when trying to access Azure portal

When I try to Access Azure Portal, it shows that my account is locked, How do I unlock it

Azure Active Directory External Identities
asked 2023-06-02T11:55:49.8066667+00:00
Qfba Support 0 Reputation points
commented 2023-06-06T06:37:41.15+00:00
Sandeep G-MSFT 7,441 Reputation points Microsoft Employee
0 answers

How to migrate from Existing CIAM to Azure B2C

Client IDP and internal CIAM tool IDP with setup with SP initiated. There are other configuration in existing CIAM. If we plan to migrate from existing CIAM system to Azure b2c , what is the recommended tool or approach so we can avoid to re-configure…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,892 questions
Azure Active Directory External Identities
asked 2023-06-01T01:33:21.4+00:00
TUHIN SINHA 20 Reputation points
edited a comment 2023-06-05T15:18:41.5366667+00:00
TUHIN SINHA 20 Reputation points
0 answers

Custom Policy for azure ad b2c not working with custom email and Totp (both) working seperately

I am working with azure ad b2c custom policy for authenticating our users. We needed custom email verification and totp MFA flow both in our signup/signin flow. Though through samples provided by microsft we are able to implement custom email and totp…

Azure Active Directory External Identities
asked 2023-05-31T10:35:28.29+00:00
Momin Naveed 0 Reputation points
edited the question 2023-06-05T10:22:59.76+00:00
Akshay-MSFT 5,996 Reputation points Microsoft Employee
1 answer

Email claim not present in output for orchestration step

Hi everybody ! I'm facing an issue with the following by using ADB2C and IEF custom policies during the passwordReset userjourney. I have the following technical profile : The passwordreset user subjourney is the following: The aim is to send the…

Azure Active Directory External Identities
asked 2023-06-04T07:56:04.4233333+00:00
Cloudy 126 Reputation points
commented 2023-06-05T08:55:13.2+00:00
Cloudy 126 Reputation points
1 answer

API connector in a user flow for Azure B2B external identities

Is it possible to run custom business logic (e.g. some Graph API calls) using an API connector before sending the token (during sign-ins)? If not, is this something which is on the roadmap?

Azure Active Directory External Identities
asked 2022-02-14T16:06:13.693+00:00
Vlietinck, Arne 1 Reputation point
edited the question 2023-06-03T03:47:08.9466667+00:00
Shweta Mathur 15,071 Reputation points Microsoft Employee
1 answer

How aad b2c api connector integrate to springboot project

Pushed a springboot project docker image and developed in app service,how can i use api connector to call springboot api,is there a code sample?

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,892 questions
Azure Active Directory External Identities
asked 2023-05-26T07:13:50.88+00:00
HuangWei 1 Reputation point
commented 2023-06-03T03:45:15.5066667+00:00
Shweta Mathur 15,071 Reputation points Microsoft Employee
2 answers One of the answers was accepted by the question author.

Encoding Issues in B2C Custom Policies

We are facing encoding issues in our B2C custom policies, even after updating all ContentDefinition DataUri to the latest templates. The problems arise in the signinup and password reset custom policies, where characters like "ä" are not…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
610 questions
Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,892 questions
Azure Active Directory External Identities
asked 2023-05-31T11:36:41.95+00:00
Teun Dozeman 25 Reputation points
edited the question 2023-06-03T03:38:26.8133333+00:00
Shweta Mathur 15,071 Reputation points Microsoft Employee
1 answer

SharePoint guest user sign-in error - AADSTS50177

Hello, I am working to grant access to a guest user to my tenant so they can access a SharePoint site. I have created the guest user, invited the user, and set their permissions on the specific SharePoint site. When they go to sign in, they get the…

Azure Active Directory External Identities
asked 2023-05-09T13:35:53.52+00:00
J$ 0 Reputation points
commented 2023-06-02T21:46:46.4933333+00:00
James Hamil 14,431 Reputation points Microsoft Employee
2 answers

Requesting Assistance with Granting Read-only Permissions for Views in Azure SQL Serverless Pool to Guest User in a Canvas App

Hello Azure Community, I am currently working on a project that involves granting read-only permissions for views on the database level (SQL Serverless Pool) to a guest user in a Canvas app. However, I have encountered a challenge in determining the…

Azure SQL Database
Azure Synapse Analytics
Azure Synapse Analytics
An Azure analytics service that brings together data integration, enterprise data warehousing, and big data analytics. Previously known as Azure SQL Data Warehouse.
3,130 questions
Azure Active Directory External Identities
asked 2023-05-30T16:02:51.6833333+00:00
Nicole Inman 1 Reputation point
commented 2023-06-02T17:39:53.5833333+00:00
Oury Ba-MSFT 11,381 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

How do I configure multiple SSO IdPs in Azure AD B2C?

I have an application that uses AD B2C for authentication. I need to allow external IdPs to authenticate via SSO into my application via ADB2C. I followed the steps in this documentation and it worked well for one IdP.…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,892 questions
Azure Active Directory External Identities
asked 2022-05-24T20:46:25.097+00:00
Stephanie Akpakoun 26 Reputation points
commented 2023-06-02T12:58:02.6766667+00:00
Rafael Caviquioli 20 Reputation points
0 answers

Azure B2C Federated user login - Missing email and UPN

Hi, I'm using B2C federation with external AAD. The user doesnt have any email address in external Azure AD but has UPN value. However, in B2C once the user logs it does create a user profile but with empty fields for userPrincipalName and email.…

Azure Active Directory External Identities
asked 2022-07-05T02:06:51.187+00:00
robcool 91 Reputation points
commented 2023-06-02T11:33:08.79+00:00
Rafał Ośko 0 Reputation points
1 answer

Delete signInNames.emailAddress from a federated AD B2C user

Hey guys, I am having a hard time trying to delete the signInNames.emailAddress attribute from a federated user using custom policies. I've already tried to remove it by using a technical profile to update the signInNames.emailAddress with a null claim,…

Azure Active Directory External Identities
asked 2022-11-03T12:05:30.833+00:00
Alvaro Roberto 1 Reputation point
commented 2023-06-02T09:30:15.12+00:00
Molnár Dávid 0 Reputation points
1 answer

Azure AD B2C - Administrator changes the password, user not able to login to application

We are using custom policies to login to our application. Now, we have a scenario where the admin reset passwords for the users using the Azure ADB2C blade. But, the user is not able to login to the application when trying to use the temporary password…

Azure Active Directory External Identities
asked 2023-05-05T08:00:23.3733333+00:00
Sakthi 121 Reputation points
answered 2023-06-02T04:20:54.9666667+00:00
Alfredo Revilla (MSFT) 18,851 Reputation points Microsoft Employee
1 answer

Max length of "sub" in ID token

I found that I can user the field "sub" in the ID token as the user identifier from this document: https://learn.microsoft.com/en-us/azure/active-directory/develop/id-tokens However, I cannot find the max length of the "sub" field…

Azure Active Directory External Identities
asked 2023-05-30T02:03:40.8633333+00:00
Kam Shing Cheung 0 Reputation points
commented 2023-06-01T21:45:53.3133333+00:00
James Hamil 14,431 Reputation points Microsoft Employee
13 answers

AAD B2C - "Lag" after custom policy upload

Hi everyone, when I upload a new version of a custom policy it takes a varying amount of time (from a few seconds to five minutes) until the new version is used. During development this is very frustrating and time-consuming since I either have to…

Azure Active Directory External Identities
asked 2022-10-20T13:31:47.487+00:00
Maximilian Bürgi 101 Reputation points
commented 2023-06-01T20:59:32.9166667+00:00
Marilee Turscak-MSFT 24,486 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

Client IDP Send à SAML Response -> Azure B2C (SP) -> Consume SAML Response

Client IDP : External IDP initiating the IDP flow. (Not Azure B2C any external IDP ) Azure B2C : Acting as Service Provider We are looking for below IDP Flow in terms of Client IDP supporting IDP initiated flow. The originator is Client IDP. Client IDP…

Azure Active Directory External Identities
asked 2023-05-30T17:27:15.6166667+00:00
TUHIN SINHA 20 Reputation points
accepted 2023-06-01T11:00:54.88+00:00
TUHIN SINHA 20 Reputation points
3 answers One of the answers was accepted by the question author.

UPN different between Graph API and Azure Portal

I am using an AD B2C with applications that can receive connections from both a trusted AD or local accounts. The UPN I see in the Azure Portal (from both local and external accounts) are classical email addresses, and the UPN I recieve from graph API…

Microsoft Graph Users API
Microsoft Graph Users API
A Microsoft API that allows you to build compelling app experiences based on users, their relationships with other users and groups, and the resources they access for example their mails, calendars, files, administrative roles, group memberships.
735 questions
Microsoft Graph Identity API
Microsoft Graph Identity API
A Microsoft API to access Azure Active Directory (Azure AD) resources to enable scenarios like managing administrator (directory) roles, inviting external users to an organization, and, if you are a Cloud Solution Provider (CSP), managing your customer's data.
285 questions
Azure Active Directory External Identities
asked 2021-09-30T07:35:24.32+00:00
Benoit Hoffman 51 Reputation points
answered 2023-05-31T14:00:52.1266667+00:00
Giel Oomen 16 Reputation points