![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 65%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB%3C/text%3E%3C/svg%3E)
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,443 questions
Hi @BlackCat · Thank you for reaching out.
In this scenario, for SSO experience to SAML based app, I would suggest you to directly federate the application with B2C tenant. Azure AD B2C can act as SAML IDP for the SAML based applications and at the same time it can act as Service Provider for other IDPs such as FB/Google/ADFS/Salesforce etc.
If you have above setup working, users accessing SAML based app will get redirected to B2C signup/signin page and they can select any IDP be it B2C tenant itself or other IDPs such as FB/Google/ADFS/Salesforce/other Azure AD tenant etc. to sign into the SAML application.
To see this in action, please perform below steps:
1. Access my Test SAML APP (https://samltestapp2.azurewebsites.net/SP)
2. Enter below values and click on login button:
3. You will then be redirected to my B2C Signup/Signin page, where you can sign up for local account or use your FB or Azure AD account to sign into the application.
-----------------------------------------------------------------------------------------------------------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.