Azure Active Directory B2C documentation

Azure Active Directory B2C (Azure AD B2C) is a customer identity access management (CIAM) solution that enables you to sign up and sign in your customers into your apps and APIs. Your customers use their preferred social, enterprise, or local account identities to get single sign-on access to your applications. Learn how to use Azure AD B2C with our guide, tutorials, and code samples.

Overview

What is Azure AD B2C?

Overview

Microsoft Entra features supported in Azure AD B2C

Tutorial

Get started with Azure AD B2C

Overview

Azure AD B2C technical and feature overview

Overview

Customer success scenarios

Reference

Pricing

Authenticate and authorize for any app type

Select the app type that you want to build to access documentation focusing on it.

Single-page app (SPA)

A web application whose code is downloaded and run in the browser itself such as vanilla JavaScript, React and Angular.

Web app

A web app whose code runs on a server, returning page data for the browser to render such as Node.js, ASP.NET or Java.

Web API

A RESTful web service that is accessed by any app type or other web APIs, and is protected by Azure AD B2C.

Desktop app

Applications with a user interface (UI) whose code runs on a user's desktop, laptop, or notebook computer such as Windows OS.

Mobile app

Applications with a UI whose code runs on a user's phone, tablet, or other mobile device such as Android and iOS.

Back-end service or daemon

An application or script without a UI that performs non-interactive tasks like server-to-server communication or scheduled jobs.

Quick access to Azure AD B2C documentation

Get quick access to our guides and tutorials for your most common scenarios.

Learn the basics

• Authentication and authorization
• Tokens
• Protocols
• Authentication library

Authenticate: Sign in users

• Register your applications
• Create user flows
• Add social and work identities: OIDC/OAuth2/SAML
• Enable single sign-on (SSO)
• Authenticate users in a Node.js web app(Quick course)

Authorize: Call and secure your APIs

• Request an access token
• Register and secure your API
• Samples: Web apps and APIs
• Integrate with API gateway

Manage users

• User accounts
• Manage consumer users
• User and app migration approaches
• Force password reset

Customize

• Customize the UI/UX
• Customize language
• Use custom domains
• Customize user experiences using custom policies
• Custom policy how-to guide series

Security, privacy and compliance

• Manage credential attacks
• Learn where data is stored
• Security analytics with Microsoft Sentinel
• Regulations
• Security Information and Event Management (SIEM)

Automate

• Manage resources using Microsoft Graph API
• Azure DevOps Services: Build your CI/CD pipeline
• Deploy with GitHub actions
• Manage resources using Microsoft Powershell

Monitor and troubleshoot

• Azure Monitor: Retain and analyze your logs
• Application Insights: Troubleshoot and get your user insights
• Access audit logs
• Troubleshoot and error handling

More resources

• Stack Overflow
• GitHub
• YouTube
• Microsoft support

Use Microsoft Authentication Libraries (MSAL) for easy app integration

GitHub hosts the open-source Microsoft Authentication Library (MSAL). Microsoft builds and supports MSAL. We recommend MSAL for any app type that uses Azure AD B2C for authentication and authorization.

MSAL.NET

MSAL Android

MSAL Angular

MSAL iOS

MSAL Java

MSAL.js

MSAL Node

MSAL Python

MSAL React