Azure Active Directory B2C: Provide sign-up and sign-in to consumers with Google+ accounts

Create a Google+ application

To use Google+ as an identity provider in Azure Active Directory (Azure AD) B2C, you need to create a Google+ application and supply it with the right parameters. You need a Google+ account to do this. If you don’t have one, you can get it at https://accounts.google.com/SignUp.

  1. Go to the Google Developers Console and sign in with your Google+ account credentials.
  2. Click Create project, enter a Project name, and then click Create.

    Google+ - Get started

    Google+ - New project

  3. Click API Manager and then click Credentials in the left navigation.
  4. Click the OAuth consent screen tab at the top.

    Google+ - Credentials

  5. Select or specify a valid Email address, provide a Product name, and click Save.

    Google+ - OAuth consent screen

  6. Click New credentials and then choose OAuth client ID.

    Google+ - OAuth consent screen

  7. Under Application type, select Web application.

    Google+ - OAuth consent screen

  8. Provide a Name for your application, enter https://login.microsoftonline.com in the Authorized JavaScript origins field, and https://login.microsoftonline.com/te/{tenant}/oauth2/authresp in the Authorized redirect URIs field. Replace {tenant} with your tenant's name (for example, contosob2c.onmicrosoft.com). The {tenant} value is case-sensitive. Click Create.

    Google+ - Create client ID

  9. Copy the values of Client ID and Client secret. You will need both of them to configure Google+ as an identity provider in your tenant. Client secret is an important security credential.

    Google+ - Client secret

Configure Google+ as an identity provider in your tenant

  1. Follow these steps to navigate to the B2C features blade on the Azure portal.
  2. On the B2C features blade, click Identity providers.
  3. Click +Add at the top of the blade.
  4. Provide a friendly Name for the identity provider configuration. For example, enter "G+".
  5. Click Identity provider type, select Google, and click OK.
  6. Click Set up this identity provider and enter the client ID and client secret of the Google+ application that you created earlier.
  7. Click OK and then click Create to save your Google+ configuration.