Azure Active Directory B2C: Provide sign-up and sign-in to consumers with Microsoft accounts

Create a Microsoft account application

To use Microsoft account as an identity provider in Azure Active Directory (Azure AD) B2C, you need to create a Microsoft account application and supply it with the right parameters. You need a Microsoft account to do this. If you don’t have one, you can get it at https://www.live.com/.

  1. Go to the Microsoft Application Registration Portal and sign in with your Microsoft account credentials.
  2. Click Add an app.

    Microsoft account - Add a new app

  3. Provide a Name for your application and click Create application.

    Microsoft account - App name

  4. Copy the value of Application Id. You will need it to configure Microsoft account as an identity provider in your tenant.

    Microsoft account - Application Id

  5. Click on Add platform and choose Web.

    Microsoft account - Add platform

    Microsoft account - Web

  6. Enter https://login.microsoftonline.com/te/{tenant}/oauth2/authresp in the Redirect URIs field. Replace {tenant} with your tenant's name (for example, contosob2c.onmicrosoft.com).

    Microsoft account - Redirect URL

  7. Click on Generate New Password under the Application Secrets section. Copy the new password displayed on screen. You will need it to configure Microsoft account as an identity provider in your tenant. This password is an important security credential.

    Microsoft account - Generate new password

    Microsoft account - New password

  8. Check the box that says Live SDK support under the Advanced Options section. Click Save.

    Microsoft account - Live SDK support

Configure Microsoft account as an identity provider in your tenant

  1. Follow these steps to navigate to the B2C features blade on the Azure portal.
  2. On the B2C features blade, click Identity providers.
  3. Click +Add at the top of the blade.
  4. Provide a friendly Name for the identity provider configuration. For example, enter "MSA".
  5. Click Identity provider type, select Microsoft account, and click OK.
  6. Click Set up this identity provider and enter the Application Id and password of the Microsoft account application that you created earlier.
  7. Click OK and then click Create to save your Microsoft account configuration.