Set up sign-up and sign-in with a Facebook account using Azure Active Directory B2C

Create a Facebook application

To use a Facebook account as an identity provider in Azure Active Directory (Azure AD) B2C, you need to create an application in your tenant that represents it. If you don’t already have a Facebook account, you can get it at https://www.facebook.com/.

  1. Sign in to Facebook for developers with your Facebook account credentials.
  2. If you have not already done so, you need to register as a Facebook developer. To do this, select Register on the upper-right corner of the page, accept Facebook's policies, and complete the registration steps.
  3. Select My Apps and then click Add New App.
  4. Enter a Display Name and a valid Contact Email.
  5. Click Create App ID. This may require you to accept Facebook platform policies and complete an online security check.
  6. Select Settings > Basic.
  7. At the bottom of the page, select Add Platform, and then select Website.
  8. Enter https://login.microsoftonline.com/ in Site URL. Enter a URL for the Privacy Policy URL, for example http://www.contoso.com.
  9. Select Save Changes.
  10. At the top of the page, copy the value of App ID.
  11. Click Show and copy the value of App Secret. You use both of them to configure Facebook as an identity provider in your tenant. App Secret is an important security credential.
  12. Select Products, and then select Set up under Facebook Login.
  13. Select Settings under Facebook Login.
  14. Enter https://login.microsoftonline.com/te/{tenant}/oauth2/authresp in Valid OAuth redirect URIs . Replace {tenant} with your tenant's name (for example, contosob2c.onmicrosoft.com). Click Save Changes at the bottom of the page.
  15. To make your Facebook application available to Azure AD B2C, select App Review, set Make My Application public? to YES, choose a category, for example Business and Pages and then click Confirm.

Configure a Facebook account as an identity provider

  1. Sign in to the Azure portal as the global administrator of your Azure AD B2C tenant.
  2. Make sure you're using the directory that contains your Azure AD B2C tenant by switching to it in the top-right corner of the Azure portal. Select your subscription information, and then select Switch Directory.

    Switch to your Azure AD B2C tenant

    Choose the directory that contains your tenant.

    Select directory

  3. Choose All services in the top-left corner of the Azure portal, search for and select Azure AD B2C.

  4. Select Identity providers, and then select Add.
  5. Enter a Name. For example, enter Facebook.
  6. Select Identity provider type, select Facebook, and click OK.
  7. Select Set up this identity provider and enter the App ID that you recorded earlier as the Client ID and enter the App Secret that you recorded as the Client secret of the Facebook application that you created earlier).
  8. Click OK and then click Create to save your Facebook configuration.