question

ScottM-7356 avatar image
0 Votes"
ScottM-7356 asked WojciechPoniatowski-2642 commented

How does B2C determine user uniqueness?

How does B2C determine user uniqueness (i.e. when to create a new user vs use an existing user)? What happens when a pre-existing b2c user last name changes due to marriage / divorce? Will the next B2C auth create a new user or update the last name for the existing user? How does IDP type affect this (AAD vs external customer IDP)?

azure-ad-b2c
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi, are there any updates with this case? If not, please select the appropriate response as "Answered." Otherwise please let us know how we can assist you.

0 Votes 0 ·

1 Answer

amanpreetsingh-msft avatar image
2 Votes"
amanpreetsingh-msft answered WojciechPoniatowski-2642 commented

Hello @ScottM-7356, Please find below the answer to your questions:

How does B2C determine user uniqueness (i.e. when to create a new user vs use an existing user)?

Azure AD B2C first checks to see if ObjectID of the authenticating user exists in the directory or not.

  • If the Object ID doesn't exist, sign-up process is initiated by using the LocalAccountSignUpWithLogonEmail technical profile.

  • If the Object ID exists, AAD-UserReadUsingObjectId technical profile is used to fetch details of the user based on his/her object ID.

What happens when a pre-existing b2c user last name changes due to marriage / divorce? Will the next B2C auth create a new user or update the last name for the existing user?

Once the user completes the sign-up process in B2C, last name gets populated locally in B2C directory. If the last name gets changed in federated IDP (e.g. Facebook) afterwards, it will not be changed automatically in Azure AD B2C at subsequent sign-in. After signup, if user wants to change last name in B2C, he/she would need to edit profile which should trigger profile editing user flow in the backend.

How does IDP type affect this (AAD vs external customer IDP)?

The behavior explained in the answer of above question should be same for both Local Account signup and any External IDP that users may use to sign-up.


Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

What is the scope of Object ID uniqueness? Tenant? Data center? Whole world?
I'm looking for solution (attribute from Azure AD B2C user) that should be used by applications (service providers) to match/link Azure AD B2C identity and my application user profile.

ex: when user decide to change his phone or email that is used to login. After change it should still return same identity. Is Object ID good for that?

Extra case: what will happened to Object ID during disaster recovery? Will Object ID stay same to same users? Or new Object ID will be generated?

0 Votes 0 ·