All Questions
Tagged with azure-ad-b2c identity-experience-framework
195
questions
0
votes
0
answers
27
views
Migrating users with TOTP secrets from legacy IDP to Azure AD B2C [closed]
I am in the process of migrating a legacy IDP to Azure AD B2C. Some of our users have TOTP MFA enabled and I would like to migrate them without re-enrolling using new secrets for a seamless user ...
- 1
0
votes
0
answers
44
views
What is the recommended approach to setting up social login for Azure apps?
I have a simple function app that hosts a JSON-RPC endpoint on Azure. That endpoint is called from a native CLI application. Now I want to build authentication and authorization for it that allows for:...
- 1
0
votes
1
answer
65
views
Cant extract claim form id_token_hint
Not able to extract claim from id_token_hint:
<ClaimType Id="email">
<DisplayName>Email Address</DisplayName>
<DataType>string</DataType>
</ClaimType&...
- 732
1
vote
1
answer
67
views
Error during id_token_hint token validation
I have error during verifying id_token_hint signature (followed this b2c sample):
Message:Key not found in metadata. Reason: 'No key set found in
metadata'
My technical profile:
<TechnicalProfile ...
- 732
0
votes
1
answer
147
views
Azure AD B2C - Unable to fix the OrchestrationStep depending upon the conditional true/false
I am facing one weird issue while putting steps in OrchestrationStep.
I have a requirement to allow or deny user login depending upon user IP address. I am calling an API to check user and IP ...
- 531
0
votes
1
answer
176
views
Linking federated user to local B2C user through email address
I'm working on a proof of concept hooking up a SaaS application with Azure B2C. The out of the box user flows all work nicely but really don't deliver the functionality that I require. So welcome for ...
- 457
0
votes
1
answer
61
views
Do I need to store external idp user in local AAD?
I have inspected a lot of custom policy examples, and I noticed following pattern: If user is new, we store it locally using AAD-UserWriteUsingAlternativeSecurityId. Do we really need to perform this ...
- 732
0
votes
1
answer
64
views
Access OAuth response in a custom policy
According docs, if I need include external idp token in a response, I need this code:
<ClaimsProvider>
<DisplayName>Facebook</DisplayName>
<TechnicalProfiles>
<...
- 732
1
vote
2
answers
219
views
How to extract info from nested external idp access token in a custom policy?
I have a custom policy which produce b2c token with nested idp_access_token. I want my b2c token to include email claim. I have email (unique_name/sub claims) in nested idp_access_token. So, is it ...
- 732
1
vote
1
answer
387
views
Throttled Messages not displaying on Azure B2C Phone Factor Page
We have a Sign-Up only custom policy with a phone factor step to collect an MFA phone number. The phone factor page is pretty close to the samples.
We are using the multifactor:1.2.5 data URI and have ...
- 4,628
0
votes
1
answer
67
views
How do I use Azure B2C to create a custom policy for a proprietary Protocol
I am looking for some guidance on how I can use an Azure B2C custom policy to federate to a legacy Authentication Server. Here is the current flow that I would like to implement in the custom policy.
...
- 35
0
votes
1
answer
663
views
Azure AD B2C Custom Policy with external identity provider Error AADB2C90289
I have successfully configured an external identity provider using Azure AD B2C Custom policy. The authorize endpoint is passed correct acr_values too. As I launch the authorize endpoint, I am taken ...
- 31
1
vote
1
answer
170
views
Azure MgGraph Powershell Upload Identity Experience Framework Policy
I'm working on automating the creation of an Azure AD B2C tenant in Terraform, I can get many parts of it set up in Terraform but some parts I realize I can't, specifically Identity Experience ...
- 3,524
0
votes
1
answer
459
views
Check if a user exists before executing the resource owner flow in Azure B2C
We are implementing the Resource Owner flow as described in the Microsoft docs. But before executing the Open ID connect call we would like to check if the user already exists or not. If it doesn't we ...
0
votes
1
answer
581
views
Sign up customization with separate email verification using SendGrid
I am using Azure AD B2C with Custom Policies to implement a sign-up flow where user has to verify the email before proceeds to sign up page.
I found an example here https://github.com/azure-ad-b2c/...
- 11