Microsoft Entra ID for Customers: Requiring Customers to Re-register their MFA Does Not Function
Overview: Our team recently created a "Microsoft Entra ID for Customers" resource which we are attempting to configure for our use case. For said use case, multi-factor authentication is required and needs to be configured the first time a…
Why does Azure AD B2C application allowPublicClient = null work like its set to true when I log in with Msal?
I recently created an Azure AD B"C application and noticed the property allowPublicClient default to null after creation by looking in the manifest. On the Authentication page for the application in Azure UI it shows as having the value…
Unable to get custom user properties (user_id) from Auth0 in Azure AD B2C claims
Hi, We have added Auth0 as IDP in Azure AD B2C using custom policies like below: <TechnicalProfile Id="Auth0-OID"> <DisplayName>Auth0</DisplayName> <Protocol Name="OpenIdConnect" /> …
Enterprise App X.509 certificate expiring time
I authenticate an webapp that use SAML auth with X.509 certificate from Azure Enterprise App. It work perfekt, but cert expire after few weeks. How can I change expiring time?
Azure B2C custom page layout not reflecting changes in template
Trying to develop a custom page layout for my User Flow. When changing the content in the blob storage, updating the Custom page URI or even turning off the option to use a custom template - no changes are reflected when running the user flow either from…
How to obtain groups claim in the access token in Azure AD B2C?
I'm working with Azure AD B2C and need to retrieve the groups claim in the access token for my application
Entra Custom Authentication Extensions to Function App in a Private vNet
I have gone through the documentation on setting up a custom authentication extension, and have built a function app and configured all the parts for making a call into my function app endpoint for the On Token Issuance Start event. My function app is…
Azure AD B2C Custom Policy with force password reset after 90 days
I am trying to integrate this policy: https://github.com/azure-ad-b2c/samples/blob/master/policies/force-password-reset-after-90-days/ I created the required custom user attribute from portal (passwordResetOn). Next, I edited the…
can we migrate unregistered active directory domains(.local) to azure entra id
I want to migrate .local domain which is not registered to azure entra id
Azure B2C custom template update not picked up
I have some custom policies I use in my azure b2c client. I made updated to my B2C_1A_TRUSTFRAMEWORKBASE.xml and I uploaded it. When I download it again, it reflects my updates. But when I run my custom policy, I can see it doesn't use my…
How to remove Temporary Access Pass from Microsoft Entra ID for Customers authentication methods?
As requested by https://learn.microsoft.com/en-us/entra/external-id/customers/how-to-multifactor-authentication-customers, I am trying to remove the Temporary Access Pass authentication method from our Microsoft Entra ID for Customers instance and am…
How to schedule log notification for an Enterprise Application
I have added an application in 'Enterprise Application' for SSO. Let's call app as XYZ. The SSO is working fine. I need to send the logs of XYZ to the app owner. I am doing it manually. How can I schedule log notification in Azure AD?
Azure AD B2C: Change the "Run now endpoint" in Azure Portal
Azure Portal gives you the possibility of running B2C custom policies from the Identity Experience Framework blade. I would like to the "Run now" endpoints start with my custom domain instead of the default `https://
External User Leave Settings
I have a question about the external user leave settings... If I request to leave, will my email account get deleted? For context, I accidentally linked all my domains/emails together and want to unlink them without deleting my email accounts and…
Azure AD B2C IEF (Custom Policy)
Azure AD B2C Identity Experience Framework (IEF) allows a deeper customization of the UI/UX of CIAM through coding using XML /CSS/ HTML. This is a grey area for the Azure AD administrators who manages the IAM infra (User and App authentication and…
Unable to get 'ResourceType.MGMT_RESOURCE_SUBSCRIPTIONS' in profile 'latest'
AZ LOGIN failing with the following error: Unable to get 'ResourceType.MGMT_RESOURCE_SUBSCRIPTIONS' in profile 'latest' This is the Azure CLI version: { "azure-cli": "2.58.0", "azure-cli-core": "2.58.0", …
Entra External ID AttributeCollectionSubmit does not include ObjectId
0 I registered a custom authentication extension in Entra External Id that will call my api during user signup with the AttributeCollectionSubmit event type. I would like to register this user in my external database during this call. However, the user…
Is on-behalf-of (OBO) flow supported by Entra External ID?
Is on-behalf-of (OBO) flow supported by Entra External ID? My understanding is that was in Private Preview for AD B2C, but with External ID being based directly on Entra, is this available?
Can we use ENTRA ID B2C tenant to publish Citrix App
We have a unique use case where the client wants to publish the Citrix App to an Entra ID/Azure B2C tenant so that some of the partner users can access apps that are behind Citrix . I never heard that we could publish something like this to B2C tenant.…
How to identify azure entra user in my own database
When a user signs up with entra external I have to make an association in my own database to this user. there are multiple ways to call my external api during the sign up flow (such as custom authentication extensions). However none of them pass a unique…