question

palayathar avatar image
0 Votes"
palayathar asked JamesTran-MSFT edited

B2C Multi tenant Azure AD - Add email to the token

Hello Team

I am using custom policies to enable Multi-tenant AD on a B2C tenant following this flow.

I am getting this [kindly see the picture below].

81000-jwttoken.png


However, I want the custom policy to fetch the email or upn attribute from user's Azure AD and add it as "emails" in the token. The idea is to provide this token to the application [Dynamics 365] so that it will recognize the email account and thus map the signed user account with corresponding Dynamics 365 contacts. Thanks for your effort.


azure-ad-b2c
jwttoken.png (35.4 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

palayathar avatar image
0 Votes"
palayathar answered

I found the answer.

It seems I need to add this to trustframeworkextension.xml under ClaimProviders -->ClaimProvider [for e.g. AAD] - TechnicaProfiles -OutputCliams element



<OutputClaim ClaimTypeReferenceId="email" PartnerClaimType="email" />

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.