Questions tagged [azure-ad-b2c]
Azure AD B2C is a cloud identity management solution for web and mobile applications targeting your customers (consumers and businesses).
6,135
questions
0
votes
0
answers
61
views
Access Token not returned by /token Azure B2C
I've started attempting to create a SPA with Web API connectivity through Azure AD B2C. I've successfully done this in the normal Microsoft Entra Id. I am following this guide.
Here are details ...
- 15
0
votes
0
answers
17
views
ID Token in MSAL User Token Cache Is Missing Custom Claims Present In Token from AcquireInteractiveToken
I am using PublicClientApplicationBuilder to add Microsoft Azure AD B2C to a desktop application. We are extending an existing Identity Experience Framework custom policy already in use for a website ...
- 11
0
votes
1
answer
29
views
Azure B2C multi-tenant Microsoft Entra ID doesn't allow sign in as another Microsoft account
After following this tutorial to setup AD B2C multi-tenant for Microsoft sign in: Set up sign-in for multitenant Microsoft Entra ID using custom policies in Azure Active Directory B2C, we encountered ...
- 3
0
votes
0
answers
26
views
Azure B2C Authentication Error IDX20803 and IDX20804 in Production Environment
I'm currently running an application in a production environment hosted on Azure (.net 8), which is set up with Azure B2C authentication. Recently, I've started to see a large number of failed ...
- 889
0
votes
0
answers
14
views
User info endpoint intermittently sending incorrect data when impersonating
Issue is happening intermittently and seemingly at no specific interval.
Admin user is impersonating another user, when the user-info endpoint is hit with the impersonated access_token, some details ...
0
votes
1
answer
36
views
Azure Function App authentication using Azure B2C
I have a single-page application (SPA) developed with Vue.js and hosted on Azure App Services that is using Azure B2C and MSAL 2.8.0 for authentication. The web APIs called by the SPA are developed ...
- 131
0
votes
1
answer
36
views
In Azure AD B2C who provides the ID token?
I am trying to get my head around the concept.
You have an azure B2C, and have two external IDP's configured.
I guessed that the ID token was provided by the Azure B2C and not the external IDP which ...
- 3
0
votes
0
answers
42
views
Azure B2C not returning user's email in Application Claims reliably
I have a flask web application hosted through Azure App Service that uses Azure B2C for user authentication and account management.
Upon visiting the website, a user is expected to log in using their ...
- 17
1
vote
1
answer
29
views
Okta initiated logon to Azure B2C
We are trying to use Okta for external users to log in to our Azure B2C for API access. We have it working (ish) but it requires multiple clicks by the users and could end up being a bit confusing. ...
- 11
0
votes
0
answers
14
views
Using AzureB2C Invite flow prevents EnableTokenAcquisitionToCallDownstreamApi from working. Can I use two custom policies?
I'm trying to work with AzureB2C's invite flow from their samples
(https://github.com/azure-ad-b2c/samples/tree/master/policies/invite)
I have setup the two custom policies
B2C_1A_InvitePolicy
...
- 7,691
-1
votes
0
answers
32
views
SSO accross different identity provider domains using Azure ADB2C
I am currently working on a project involving multiple service providers, each with a distinct domain, such as "domain1.com", "domain2.com", and so on. Each domain has its own ...
0
votes
0
answers
16
views
AAD B2C QR Code not showing for some users
We have a custom policy that provides new users with a QR code to scan in their authenticator app to create TOTP codes for authentications. I am having an issue where the QR code does not load for ...
- 191
1
vote
1
answer
39
views
Azure AD B2C - Some users do not receive verification codes to their emails
Good afternoon,
I have tried searching online but I could not find a definitive answer for this as most posts just end up as dead ends. We use Azure AD B2C for creating customers as members in our ...
- 11
0
votes
0
answers
23
views
What condition is a best practice for B2C admin? [closed]
I'm trying to create a B2C admin for my Azure B2C activities. While doing the role assignment , it seems that MSFT has done role assignment condition mandatory.
My question is, what is the best suite ...
- 2,539
1
vote
1
answer
36
views
How to implement AD B2C authentication on an ASP Net Core application that has Razor pages and web API in a single application
I am trying to secure the application using AD B2C, The application has Razor Pages and WebAPI. The razor pages .cs file has requests to the webapi using httpClient. I have gone through the sample B2C ...
- 21
0
votes
0
answers
40
views
Custom Claims Not Included in Token After Local Sign-In in Azure AD B2C Custom Policies
I am new to custom policies for Azure AD B2C and have encountered an issue while working with custom attributes. The custom attributes I have added are being included in the token when a user creates ...
- 1
0
votes
2
answers
26
views
What's the link to login page in azure b2c
I have setup Azure B2C with custom user flows, all works fine from my SPA application. However, I have a landing page which is not part of the SPA application and I want to add login and signup links.
...
- 5,919
0
votes
1
answer
55
views
Azure B2C - confusing expiring fields in refresh token
I am using Azure B2C for authentication in my .NET Core web api project. I am trying to renew refresh token using step outlined in documentation - https://learn.microsoft.com/en-us/azure/active-...
- 93
0
votes
0
answers
47
views
Server error occured while using B2C on Azure API Management Develop portal
I want to add the ability to sign in or up for my APIM developer portal via any Microsoft account type (personal or corporate, work ...).
I have uploaded SocialAndLocalAccounts custom policy from the ...
- 25
0
votes
0
answers
35
views
Azure AD B2C Bad Request Message
I am building identity layer in my app using AAD B2C. I got across very unpleasant behavior of the service. If there is a certain internal error, it responds with the page with only raw text in it: ...
- 4,093
0
votes
1
answer
75
views
Azure Static Web App - Only Allow Authenticated Users (Entra, B2C)
Problem: I am trying to setup an Azure Static Web App so the html content of it would be only accessible to the authenticated (Entra B2C) users:
1. What I have:
I have a static web app in Azure (...
- 1,236
0
votes
1
answer
88
views
Azure b2c - refresh token does not include custom claims
When a user logs in, I hit a REST API that verifies the username and password and returns some properties like personId, comUsername, wcfToken, and organizationCode. These properties are then returned ...
- 507
-2
votes
1
answer
32
views
Azure AD B2C custom policies: Validation in ConvertStringToPhoneNumberClaim claims transformation doesn't work
I am working on an app using B2C custom policies. Currently, I am replacing an extension attribute containing users' phone numbers with Microsoft's built-in Mobile phone attribute. In connection with ...
- 1
0
votes
1
answer
56
views
Implementing Azure B2C single sign on shared between multiple apps
I want to implement SSO accross multiple apps. My requirement is that we will login in one app and switch between different apps withoout having to login again.
App 1- React Spa
App 2 - .Net based.
I ...
0
votes
0
answers
27
views
Migrating users with TOTP secrets from legacy IDP to Azure AD B2C [closed]
I am in the process of migrating a legacy IDP to Azure AD B2C. Some of our users have TOTP MFA enabled and I would like to migrate them without re-enrolling using new secrets for a seamless user ...
- 1
0
votes
0
answers
90
views
Issue with Token Generation in ASP.NET Core 8 using Azure AD B2C: Error AADSTS50049
I'm working on an ASP.NET Core 8 API called ApiApp secured with Azure AD B2C and an ASP.NET Core MVC application called WebApp. Everything works fine, and I can call ApiApp from WebApp.
I want to ...
- 43
0
votes
1
answer
97
views
Error AADSTS50049: "Unknown or invalid instance" in ASP.NET Core 8 MVC with Azure AD B2C
I am working on an ASP.NET Core 8 MVC application and using Azure AD B2C for authentication management. Below is my appsettings.json configuration:
"AzureAdB2C": {
"Instance": &...
- 43
0
votes
0
answers
22
views
Automatically acquire access token for site hosted in sharepoint to authenticate in on-premise web api
Is it possible to silently, completely without user interaction, acquire access token from login.microsoftonline.com, to authenticate web api running on-premise?
I have registered an app in Azure ...
- 43
0
votes
0
answers
24
views
Azure B2C embedded iFrame login 400 bad request
I got custom policy to handle local sign in, forgot password and Entra ID login in my .net core 8 mvc web app. It is working fine in regular login, however I got a problem when using it with an iFrame....
0
votes
0
answers
31
views
Issue implementing impersonation in ASP.NET Core Web App via Azure B2C custom policy
We have several websites that use several different tech stacks that we would like to implement user impersonation, so an admin can login as a given user, see what they see, and be able to walk them ...
0
votes
1
answer
42
views
B2C Custom Policy REST API error - Bad Request
I have a B2c Custom policy defined that is supposed to call a token endpoint. Here is how I have tried to configure the policy:
<TechnicalProfile Id="GetTokenInformation">
<...
- 31
0
votes
0
answers
31
views
B2C Custom Policy as Federated Identity Provider in AWS Cognito
I have a B2C Custom Policy configured. This policy gives id token in the output response. There are four custom attributes defined in the custom policy. These custom attributes are not stored in B2C ...
- 31
0
votes
0
answers
31
views
Azure AD B2C localization string IDs for APIs
I'm working on localization in Azure AD B2C custom workflows and I'm struggling to identify the stringIDs to use for customizing messages displayed to users.
In general I would like to find a way to ...
- 1
0
votes
1
answer
114
views
Azure B2C IdP-Access Token fails with IDX10511: Signature validation failed
I added a working corporate login (EntraId) for my company in Azure AD B2C with custom policies.Now I can login and I add an access token to the claims, which I sent with my API-Calls Microsoft learn.
...
- 87
0
votes
0
answers
42
views
How to implement 'Step-up' authenticate using AAD B2C
We use B2C with email/phone MFA. I want to protect risky/sensitive actions by asking users to re-authenticate using a TOTP.
I can see examples of this pattern in other services, but not B2C. I looked ...
- 6,089
0
votes
0
answers
40
views
Azure B2C sign-in flow and API Connector Blocking Response
I’m trying to implement API Connector for run custom logic inside Azure B2C sign-in process. The logic should be that when some implemented conditions are met – user is able to successfully log into ...
- 343
1
vote
1
answer
76
views
How to authenticate a user that was redirected to a web application from a desktop application
I am having an issue trying to use Azure AD B2C to use SSO between my desktop application and my web application. The issues is almost exactly what is described in this question: Microsoft Question
I ...
0
votes
2
answers
66
views
Assign B2C User to ExternalAzureAD identity
Is it possible in Azure AD B2C that I can assign a special identity (e.g. ExternalAzureAD) to a user when a user logs in? Currently all users are stored with their email as identity.
I tried searching ...
- 87
0
votes
1
answer
31
views
After using B2C for authentication, I want to ask the Browser at what time the b2c cookie will be set?
I'm trying to use Azure AD B2C for authentication for my app. However, understanding when it is set-cookie for the browser seems difficult.
I tried to use the B2C API to authenticate login, but it ...
0
votes
0
answers
44
views
What is the recommended approach to setting up social login for Azure apps?
I have a simple function app that hosts a JSON-RPC endpoint on Azure. That endpoint is called from a native CLI application. Now I want to build authentication and authorization for it that allows for:...
- 1
0
votes
1
answer
60
views
Sign in to Azure B2C with an OpenID account (Microsoft Work email) but prevent user from signing up
I am working on a Single Page App (SPA) and am trying to set up a custom user flow policy for our clients.
Currently a user can log in via a created AAD email that we make in our Azure B2C tenant. ...
- 3
0
votes
1
answer
68
views
Azure AD B2C problem with Self-Service password reset
so I am having a problem with self-service password reset feature in the Azure AD B2C sign-in user flow.
When I create user via de sign-up userflows, with usernames, they can reset the passwords ...
- 38
0
votes
2
answers
82
views
Azure b2c still authenticated after hitting logout
I'm implementing Azure B2C with an ASP.NET MVC app on .NET 4.8. Our process uses cookie authentication and local user accounts with a custom flow policy, which works great.
The issue is that I am ...
- 380
0
votes
0
answers
26
views
White space error in Azure B2C force-password-reset-after-90-days policy validation
I'm getting a the following error below for the policy below:
Error:
Validation failed: 1 validation error(s) found in policy
"B2C IA FORCEPASSWORDRESET90 SIGNUP SIGNIN"
of tenant "...
- 1,473
0
votes
2
answers
125
views
Azure B2C / WPF - Handling a failed MFA verification flow
I have the following client code to fetch a token from Azure B2C endpoint:
public static async Task<AuthenticationResult> AcquireTokenAsync(this IPublicClientApplication publicClientApp)
{
...
- 964
0
votes
1
answer
53
views
Block signin access based on custom attribute value
I'm have a B2C used to store users for multiple app tenants. In order to specify the tenant a user has access to, I've added a custom attribute tenant (available via extension_tenant claim) which is ...
- 5,268
0
votes
0
answers
38
views
Azure B2C Custom Policy split Email verification and Email change page
I have forgot password flow in my custom policies
I have next flow
Verify current email using OTP
2
On the same popup(page) button for change email
If change email than enter a new one + email ...
0
votes
0
answers
27
views
Azure B2C Custom Policy - Modify Sign-in inputs
Hi Im just starting to user custom policy for Azure B2C.
I would want to create a signin/signup page where I have a customized input in sign in based from combined signup data.
Example:
In Signup the ...
- 51
0
votes
1
answer
44
views
Azure b2c cutom policy signin validation profile
Hi i would like to create a custom policy tosign up/sign in Azure b2c with a validation profile, if user email does not exist in local Db it should fail, if user email exist in the local db but is the ...
- 13
0
votes
1
answer
50
views
How to use Face ID in PWA and integrate with Azure AD B2C
We have implemented an Azure backend that exposes a Web API and uses Azure AD B2C to authenticate users. These APIs are consumed by a web portal that is built using a low code platform. When a user ...
- 451