Secure a .NET web app with the ASP.NET Core Identity framework

Entity Framework Core

Add authentication and authorization to a web app using ASP.NET Core Identity, ASP.NET Core's native security framework.

Learning objectives

In this module, you will:

  • Configure ASP.NET Core Identity support in an existing ASP.NET Core web app.
  • Provide new user registration capabilities.
  • Extend Identity UI components.
  • Customize multi-factor login capabilities.
  • Implement policy-based authorization using claims.
  • Customize and extend the underlying Identity data store.


  • Experience writing C# at the beginner level
  • Experience using relational databases and SQL as a developer
  • Familiarity with Entity Framework (EF) Core migrations
  • Ability to write Razor at the beginner level
  • Familiarity with a time-based one-time password (TOTP) authenticator app, such as Microsoft Authenticator (available in the Google Play Store or the Apple App Store)