We are developing a portal with ADB2C based authentication.
We are using the invitation based sign in process where admin can enter the details of new users (sign up) and an email is sent to user's email address with an invitation link. Clicking this link takes the user to create password screen and then logs him in.
Now we need to enable MFA (with auth app) for existing users and for new users created from our application.
I have followed the steps mentioned in https://github.com/azure-ad-b2c/samples/tree/master/policies/custom-mfa-totp and and https://medium.com/@snkaushi_9371/enable-totp-based-multi-factor-authentication-in-azure-ad-b2c-84e967d76aa4 articles.
I was able to test the custom policies directly by running them from "Identity Experience Framework" to sign up and sign in with Auth app.
Now the problem is that when I try to Sing in (login) using exiting users. It gives error "Invalid username or password". Moreover, when I try to login using an account created by running the custom policy directly, that account is successfully logged in.
I need help in following aspects
1- How can we customize our existing login policy (build in user flow) for sign in to identify old users and redirect them to Auth app signup screen.
2- How can we implement a custom policy for invitation based sign up that will take the user to Auth app registration screen after creating a password.