Need support about External user of EntraID
Hi Microsoft support team, I'm using EntraID trial and I faced with 1 problem. That is when I register an Enterprise Application, I config Supported Account type to Multiple Tenant. After that some users used their Microsoft Account to authorized the…
Implementing MFA for customer accounts not in Azure Active Directory B2C (Azure AD B2C) directory
Hello, We are implementing Azure B2C as identity system for an application. Our customer accounts are not in Azure Active Directory B2C (Azure AD B2C) directory. We are using Sign-in with REST API identity providerfor user sign-in process. We are…
Entra External ID Custom Authentication Extension Max Timeout
Entra External ID custom authentication extensions endpoints should allow for a greater max timeout duration. The maximum allowed is currently 2 seconds which seems a bit too…
Entra External ID SCIM support
Does Entra External ID support SCIM?
Microsoft Entra ID for Customers and OpenID Connect integration with customer Identity Provider
I am looking into the preview for Microsoft Entra ID for Customers (new CIAM solution), and want to know if it is possible to provide SSO for my customers by integrating towards their Identity Provider using OpenID Connect. Currently there seem to be an…
Cannot assign application to user flow in External (B2C) Tenant
Hello, I've set up a registered application (which is working) on my B2C Tenant. I wanted to assign that application to one of the user flows I created. I was following this guide:…
Unable to select Australia as location for new CIAM External ID tenant
Hi all, I am setting up a new Entra ID External CIAM tenant. Under the 'Location' section, I am unable to find Australia. Is it possible to select Australia as a location for the tenant? We need data to stay within the country to be within our privacy…
How to allow Local Accounts and Entra ID accounts to login on one portal?
Hello there, We're currently building an application that leverages Entra External ID to allow users access to our SPA application. I have created an App Registration, verified it with our MPN ID, and set it to authenticate in Multitenant mode. I have…
Does a 3rd party SaaS provider need to be Fedramp certified to connect to GCC High info through API
We have a third-party SaaS software that requires an API connection to O365 to ingest email (headers/bodies) and calendar items. One of our business units uses GCC High, and we're wondering if the third-party software can connect to our GCC High O365…
Mfa session not working in azure ad b2c custom policy
i’m using https://github.com/azure-ad-b2c/samples/tree/master/policies/mfa-email-or-phonecustom policy. how to configure MFA Session to skip MFA method selection Prompt for Every sign in? When I am testing Policy on Azure AD B2C Portal it will always…
Azure API Management Credentials Manager missing "scope" field for generic OAuth 2.0 CCF and Entra External ID
I have issues getting an access token using client credentials in API Management Credentials Manager. I am using Entra External ID for external tenants as an identity provider. Credentials Provider details: Identity provider: OAuth 2.0 Grant type:…
Adding 'Login with Microsoft' to a Entra External ID user flow.
Hello there, We're currently building an application that leverages Microsoft Entra External ID to authenticate users. I'm running into an issue where my user flow doesn't authenticate users who have an existing Entra ID account (i.e., an external…
remove work school account from azure
remove school work account from azure
Typo in `state` parameter definition on `Microsoft identity platform and OAuth 2.0 authorization code flow` documentation
Hello Entra team, I've noticed what I believe is a typo for the state parameter…
How to make password encrypted in AD B2C Custom Policy ?
Hi Team, We are using custom policies for sign in and sign up of ad b2c user flows. The password is shown as plain text in form data when user signs in or signs up which seems to be a security flaw and makes system vulnerable for attack ...how can I…
Entra ID External Identities - Verification code mail branding
Hi, I've created a user flow in an Entra ID external tenant. When signing up using an email and a password, a verification code is sent to the user's mail. My questions are the following : Is it possible to change both the branding and the content…
Assigning Azure AD roles using group?
I need to create a cloud-only group called App Admins which has the Azure AD Role Application and Cloud Application Administrator role assigned to the members that are assigned manually. What are the steps I must take and how to achieve that with the…
Azure AD B2C - how to shorten the "state" parameter in the signout url to avoid query string is too long error?
Hi, we are getting a unique query string too long error upon adding one of the standard context parameters. Somehow it is getting added to the "state" property while user logging out. I have no idea why the "state" property is…
Graph API app permissions restricting to user or groups
Hey Msft, GRAPH API is very helpful and powerful to return the information. As you know there are two moded on it as mentione here : https://learn.microsoft.com/en-us/graph/auth/auth-concepts App and delegated access. For our recurring use cases we…
ExternalAzureAD access to external organization data
Dear Team, I am implementing invited user for Entra ID. The external organization is asking if what data is going to access of there AD from EntraID? Regards, Kishor