We are reading the user from the directory in B2C rather than passing through the claims from the IdP on susequent sign ins. You could fix this by only passing through the claims from Okta, rather than having them stored in B2C at first sign in (and subsequently read from there). You could do that with custom policies.
Azure AD B2C claims (givenname, surname) are not being updated when signing in with IDP
When an Azure AD B2C account is set up after signing in with a IDP, the basic claim details are populated with data from the IDP, such as surname, givenname. When this information is changed in the IDP account, they are not being updated in the B2C claims on the next sign in?
I've created a user in okta (External OIDC IDP) with givenname: 'newname', surname: 'newsurname' and signed in, b2c returned correct givenname and surname claims.
Later I updated givenname as 'updatedname' and surname as 'updatedsurname' in okta and tried to sigin in, B2C still returns old givenname and surname. (Okta is returning updated claims but these are not updated in B2C).
Other claims are updated correctly, only issue is with these 2 claims. Please advice. Thanks.
Reference for the similar issue asked here - https://feedback.azure.com/forums/169401-azure-active-directory/suggestions/15529626-update-azure-ad-b2c-claims-when-signing-in-with-so
1 answer
Sort by: Most helpful
-
Alfredo Revilla - Upwork Top Talent | IAM SWE SWA 27,246 Reputation points
2020-07-28T18:30:19.263+00:00