Add your application to the user flow
Applies to: Workforce tenants External tenants (learn more)
A user flow defines the authentication methods a customer can use to sign in to your application and the information they need to provide during sign-up. After you create a user flow, you can associate it with one or more of the applications registered in your external tenant.
Because you might want the same sign-in experience for all of your apps, you can add multiple apps to the same user flow. But only one sign-in experience is needed for an application, so you can add each application to just one user flow.
Prerequisites
- A sign-up and sign-in user flow: Before you begin, create the user flow that you want to associate with your application.
- Application registration: In your external tenant, register your application.
Add the application to the user flow
If you already registered your application in your external tenant, you can add it to the new user flow. This step activates the sign-up and sign-in experience for users who visit your application. An application can have only one user flow, but a user flow can be used by multiple applications.
Sign in to the Microsoft Entra admin center.
Browse to Identity > External Identities > User flows.
From the list, select your user flow.
In the left menu, under Use, select Applications.
Select Add application.
Select the application from the list. Or use the search box to find the application, and then select it.
Choose Select.
Extension app
You might find an app named b2c-extensions-app in the application list. This app is created automatically inside the new directory, and it contains all extension attributes for your external tenant. If you want to collect information beyond the built-in attributes, you can create custom user attributes and add them to your sign-up user flow. Custom attributes are also known as directory extension attributes, as they extend the user profile information stored in your customer directory. All extension attributes for your external tenant are stored in the b2c-extensions-app. Do not delete this app. You can learn more about this app here.
Next steps
- If you selected email with password sign-in, enable password reset.
- Add Google, Facebook, Apple or custom OIDC federation federation.
- Add multifactor authentication (MFA) to an app.