How to fix error "AADB2C90046" returned back by ACS endpoint of Azure AD B2C?
Users are encountering an error after successful authentication through SiteMinder (external IdP). Following authentication, SiteMinder sends a SAML Response to Azure AD B2C's ACS endpoint, but B2C returns the below…
B2C Sign Up Issue in Azure API Management Developer Portal
Hello, I'm encountering an issue with my API Management developer portal. Currently, the portal only permits sign-ins and sign-ups via B2C. Previously, I successfully tested the sign-up and sign-in system. However, after updating the gateways for both…
In Entra External ID CIAM, will it be possible to add any external identity provider without a verified domain or DNS change?
We have various customers that have IdPs with their own companies and would like to use their identities to log in to our customer-facing applications. In Entra External ID CIAM, will it be possible to add any external identity provider without a…
Endless login loop - locked out from tenants
We are currently locked out from some of the CIAM tenant(s) we manage. This issue seems to surface with every tenant we created during this week after some time passes. When we try to login, the following prompt is shown: Then, after clicking next,…
B2C Microsoft identity provider with msal-browser 2.x login error code challenge require
Please see my issue in MSAL Github: B2C Microsoft identity provider with msal-browser 2.x login error code challenge require I got a suggestion to ask in the community maybe someone has an answer or has the same issue, Why does B2C not forward some…
How to resolve Invitation Redemption failed error in a B2B SAML Federation scenario with OKTA
I am currently testing the integration of OKTA as a SAML federated service, with Entra, for B2B guest access. This is a prelude to an urgent live deployment requirement that I have for a client. I have created an OKTA developer account, configured the…
Azure AD B2C token enriching preview status for user flows
For Azure AD B2C, how long is the ability to enrich tokens with external claims using the api connector in user flows expected to be in preview? This will help make a decision about whether to use this functionality. The current documentation shows…
how to fix app registration access from myapp and restrict from other users
Hi team, I have problem when create external identity & azure ad b2c, to create access management login, i have create azure ad b2c, app registration & add app launcher at enterprice application. Users can access apps from myapp when…
b2c prompt=login not working as expected
We are noticing an odd behavior with the prompt=login option using B2C custom policies and could use some help from this support forum. My requirement is to force re-auth for the following use case: “Sign in as a different user” or “Hi John Doe! Not you?…
Unable to Read/Write B2C Custom Domain Settings in Entra Admin Center
I'm following along the Azure Add your custom domain name steps and trying to navigate to the Settings>Domain name. I have global admin for the tenant which is also linked to an active subscription But there is no Setting under Identity.
Azure AD B2C user flow : Is there a way to hide custom attributes on the unified signin/signup page without removing it AND not having to Use custom page content?
I am setting up an Azure AD B2C user flow. I am using the unified sign up or sign in page. The User attributes: User Attributes: Built-in : Given Name, Surname Custom: InternalUserid I want to hide the internalUserid on the…
How to redirect external user sign in attempt to initial sign in page instead of error page?
Sign in with Microsoft added to our app through our Entra ID. It works only for our tenant users, which is okay. But when external accounts outside our tenant attempt to sign in, a Microsoft error page shows up with sensitive info of our tenant…
Multiple Tab Login AD B2C Get BadRequest
I have been working with ad b2c, sucesfully configured an app and created a login flow, I have already created a login connection using MSAL library with REACTJS, and is working good. However, if I open in 2 different tabs the url login, while in the…
I changed my account to an internal account by accident on Azure
I was playing around with permission in Azure and ended up changing the main account to internal instead of external. I cannot access my account any more, and can't even create a request and a phone call to my regional office just told me me to create…
How to Resolve issueAuthentication fails with an error stating "The requested federation realm object '< Object ID >' does not exist"
I am trying to add OKTA as an Identity Provider in the Entra ID. and i keep getting this error " Authentication fails with an error stating "The requested federation realm object '< Object ID >' does not exist" I have gone through…
Intune PIM roles needed to view Log Analytics in Entra ID
What role(s) do I need to have activated in order to view Log Analytics within Entra ID? When I looked into it, I saw that you need Security Admin and Global Reader activated. I have both of these roles, although when I go to Entra ID -> Log…
Azure AD B2C Front-channel logout URL Not Working
Hello everyone, I'm facing an issue with Azure AD B2C for which I'm struggling to find a solution. I have multiple registered applications, each representing a different product. When I log out of one of these applications, I'd like the sessions in the…
How to avoid login/sign-up redirection/popup when using AAD B2C from React Application?
Hi, When using Azure AD B2C with React SPA, can the login redirect/popup be avoided? I have a business requirement to embed the login/sign-up page in react instead of using MS hosted pages (even if customizable), not show the sign-up/login url to…
Integrating Microsoft Entra External ID with Salesforce experiences
How can I integrate the new Microsoft Entra External ID for customer with Salesforce experiences (customer portal)? The Code Samples don't explain how to integrate a SAAS application. I can't find any useful resources on CIAM (not B2C). Has anyone…
How can I assign Visitor access for external users to a SharePoint communication site?
The SharePoint site access does not allow me to add a visitor's email address. These external users have NOT been entered as Microsoft Entra guests. This SharePoint communication site will store training videos. So visitors will NOT be allowed to edit…