Login disabled
I have managed to lock myself out of my instance. Trying to get the permissions right in by Azure instance. When I try and log in it shows be an unknown tenant. See attached file: Can someone help me fix this. screenshot.screen_shot.png
Direct link to sign-up form from web app with Entra External ID
Hi! Using Entra External ID, how can I provide the user with a link that redirects directly to the sign-up form from my web app without first going through the sign-in view and clicking the small "No account Create one"-link? It would…
Support for Work/School Accounts in Microsoft Entra External ID User Flows
Hello Microsoft Team, Will Microsoft Entra External ID support Work/School account login (Microsoft Entra/ Azure AD accounts) as an external identity provider in user flows? If so, could you share any timeline or roadmap details? Thank you Bence Kiszel
Login Session Timeouts
SPA applications use the PKCE-Enhanced Auth Code Flow to authenticate users against Azure AD B2C. It was noticed when a user opens the B2C login page via the PKCE-Enhanced Auth Code Flow, and leaves the login page open for a period of time before…
Dataiku - Snowflake Entra ID authentication: The application asked for scope that doesn't exist on the resource
I am configuring OAUTH to authorize Dataiku developers in Snowflake using external OAUTH on Entra ID. In the Dataiku documentation i have information: Fill the scope with the operations and roles permitted for the access token (This depends on your OAuth…
Confusing error message when unkown user tries to sign in and isSignUpAllowed is set to false
For Entra External ID in the external tenant, using only the EmailPassword identity provider, the standard error message for a non-existing user when signing in is: "We couldn't find an account with this email address.", which is fair. However,…
CIAM sign in issue with .mil domain
We are using Entra External ID for our application. We have added users with .mil domain (e.g. example@us.af.mil) as external local members users. Per documentation, local accounts should only need a local user name (identity) / password to sign in. …
Cannot create resource with location: 'United States'. Please use location: 'Europe' to create resource for b2b directory:
Hey! I'm trying to link a tenant to my subscription. When I try, I receive this error: Cannot create resource with location: 'United States'. Please use location: 'Europe' to create resource for b2b directory: 'mytenat' The subscription is in my…
How to integrate AD B2C into Django Rest Framework
I have been thoroughly reading documentation and code examples on AD B2C, MSAL and other related topics, but I'm having a hard time figuring out how I can integrate AD B2C into the authentication and authorization for my Django Rest Framework backend. We…
unifying azure ad and azure b2c tokens
Hi I have a setup where internal apps do some processing. i have customer facing frontends that connect to the internal apps. i have apps only facing internal employees that connect to the internal apps. currently the internal apps validate both…
I changed my account to an internal account by accident on Azure
I was playing around with permission in Azure and ended up changing the main account to internal instead of external. I cannot access my account any more, and can't even create a request and a phone call to my regional office just told me me to create…
Azure B2C: Authentication Methods UI no longer shows MFA phone numbers
It looks like the "old UI experience" was finally deprecated, but the new Authentication Methods UI experience no longer shows an MFA phone number. The example user below has MFA registered via a B2C custom policy (basically straight out of…
Include OID claim in ID token
Hello, I'm testing the new Entra ID External tenants, but I can't find a way to get an ID token including the OID claim. In AAD B2C tenants the OID claim is always included in ID token and it identifies the user inside the directory (i.e. doesn't…
Adding directory claims to the ID token in Entra External ID
HI I want to include additional directory claims in the ID token of my Entra External ID instance. I have followed the instructions here: https://learn.microsoft.com/en-us/entra/external-id/customers/how-to-add-attributes-to-token I have added…
How to remove the Non Existing Domains from Microsoft Entra - Sync
Dear Experts, Would like to take your guidance to remove the Non Existting Domain. We have been managing 3 Domains with in One Tenant. 1st Domain - ABC.NET 2nd Domain - DEF.Local 3rd Domain - HHE.Local All 3 Domains are reporting to…
How to bulk import Azure AD B2C external user userType Member
Azure AD B2C has an option for "Bulk create" users. However, this option only works for internal users, users who have an approved domain. I would need to import "external users". Single external user can be created via "Create…
how do I give permission to a dynamic group member to send emails to the group?
I need to give a member of a dynamic group/security group permission to send emails to the rest of the group.
Azure B2C custom policy client credentials flow is failing and applications insight is not showing any details other than a general excetion
I have this custom technical profile created as a part of my flow to do client credentials and add some custom claims to my access_token <ClaimType Id="customClaim"> <DisplayName>customClaim</DisplayName> …
Why is there a tolower() in the confirm password placeholder?
I just noticed that there is a tolower() function in the confirm password field. It's causing an unpretty UX for the German translation. To make sure that it's not an issue with German, I tested it with English as well. Is there a way to customize the…
Troubleshoot end user not receiving Azure AD B2C MFA SMS
Our client has a persistent problem - one of their Azure AD B2C users is not receiving any of the SMS messages used in MFA. Is there any way we can troubleshoot this further besides checking the user's audit logs in the B2C tenant? The logs show the SMS…