How to enable push notifications for adb2c mfa
Hello, Is it possible to configure push notifications for ADB2C MFA? Our customers find this annoying that they still need to enter the code of the microsoft authenticator app. Is it possible to get a notification that they just need to approve…
How to get refresh token on Android
I am developing Android application that requires sign in with Microsoft. I need to get authorization code to send it to our server. On the server I exchange the authorization code to refresh token and access token. I need access token to communicate…
Microsoft Entra ID for Customers and OpenID Connect integration with customer Identity Provider
I am looking into the preview for Microsoft Entra ID for Customers (new CIAM solution), and want to know if it is possible to provide SSO for my customers by integrating towards their Identity Provider using OpenID Connect. Currently there seem to be an…
About SMS and Mutlifactor Authentication
My goal is to seperate SMS and MFA authentication for specific users Example user A,B,C authenticate from SMS and User B,C,D authenticate from MFA For this I have enabled the following features I have created 2 groups 1 for SMS and 1 for MFA under…
Microsoft Entra ID for Customers: Requiring Customers to Re-register their MFA Does Not Function
Overview: Our team recently created a "Microsoft Entra ID for Customers" resource which we are attempting to configure for our use case. For said use case, multi-factor authentication is required and needs to be configured the first time a…
Why does Azure AD B2C application allowPublicClient = null work like its set to true when I log in with Msal?
I recently created an Azure AD B"C application and noticed the property allowPublicClient default to null after creation by looking in the manifest. On the Authentication page for the application in Azure UI it shows as having the value…
Unable to get custom user properties (user_id) from Auth0 in Azure AD B2C claims
Hi, We have added Auth0 as IDP in Azure AD B2C using custom policies like below: <TechnicalProfile Id="Auth0-OID"> <DisplayName>Auth0</DisplayName> <Protocol Name="OpenIdConnect" /> …
Enterprise App X.509 certificate expiring time
I authenticate an webapp that use SAML auth with X.509 certificate from Azure Enterprise App. It work perfekt, but cert expire after few weeks. How can I change expiring time?
Azure B2C custom page layout not reflecting changes in template
Trying to develop a custom page layout for my User Flow. When changing the content in the blob storage, updating the Custom page URI or even turning off the option to use a custom template - no changes are reflected when running the user flow either from…
How to obtain groups claim in the access token in Azure AD B2C?
I'm working with Azure AD B2C and need to retrieve the groups claim in the access token for my application
Entra Custom Authentication Extensions to Function App in a Private vNet
I have gone through the documentation on setting up a custom authentication extension, and have built a function app and configured all the parts for making a call into my function app endpoint for the On Token Issuance Start event. My function app is…
Azure AD B2C Custom Policy with force password reset after 90 days
I am trying to integrate this policy: https://github.com/azure-ad-b2c/samples/blob/master/policies/force-password-reset-after-90-days/ I created the required custom user attribute from portal (passwordResetOn). Next, I edited the…
can we migrate unregistered active directory domains(.local) to azure entra id
I want to migrate .local domain which is not registered to azure entra id
Azure B2C custom template update not picked up
I have some custom policies I use in my azure b2c client. I made updated to my B2C_1A_TRUSTFRAMEWORKBASE.xml and I uploaded it. When I download it again, it reflects my updates. But when I run my custom policy, I can see it doesn't use my…
How to remove Temporary Access Pass from Microsoft Entra ID for Customers authentication methods?
As requested by https://learn.microsoft.com/en-us/entra/external-id/customers/how-to-multifactor-authentication-customers, I am trying to remove the Temporary Access Pass authentication method from our Microsoft Entra ID for Customers instance and am…
How to schedule log notification for an Enterprise Application
I have added an application in 'Enterprise Application' for SSO. Let's call app as XYZ. The SSO is working fine. I need to send the logs of XYZ to the app owner. I am doing it manually. How can I schedule log notification in Azure AD?
Azure AD B2C: Change the "Run now endpoint" in Azure Portal
Azure Portal gives you the possibility of running B2C custom policies from the Identity Experience Framework blade. I would like to the "Run now" endpoints start with my custom domain instead of the default `https://
External User Leave Settings
I have a question about the external user leave settings... If I request to leave, will my email account get deleted? For context, I accidentally linked all my domains/emails together and want to unlink them without deleting my email accounts and…
Azure AD B2C IEF (Custom Policy)
Azure AD B2C Identity Experience Framework (IEF) allows a deeper customization of the UI/UX of CIAM through coding using XML /CSS/ HTML. This is a grey area for the Azure AD administrators who manages the IAM infra (User and App authentication and…
Unable to get 'ResourceType.MGMT_RESOURCE_SUBSCRIPTIONS' in profile 'latest'
AZ LOGIN failing with the following error: Unable to get 'ResourceType.MGMT_RESOURCE_SUBSCRIPTIONS' in profile 'latest' This is the Azure CLI version: { "azure-cli": "2.58.0", "azure-cli-core": "2.58.0", …