azure-ad-b2c

问题 Is there any way to deactivate and reactivate Azure AD B2C user. I want to implement functionality which toggles Azure AD user status. 回答1: If by "deactivate and reactivate" you mean prevent the user from signing in. This is currently only possible for local accounts (not accounts from social providers: Facebook, Google, etc). You can achieve this by either: The Azure portal, Users and Groups blade > Profile > Settings, Block sign in. The Microsoft Graph, by sending a PATCH request to the

问题 Can I define a custom attribute whose data type is stringCollection and update it via the Azure AD Graph API? My experiment is failing: The request body contains unexpected characters/content for the specified content type and encoding Custom Attribute Definition <ClaimType Id="extension_array_test"> <DisplayName>Array Test</DisplayName> <DataType>stringCollection</DataType> <UserHelpText>Array Test in Token</UserHelpText> </ClaimType> Using the Graph API Sample client { "extension_[my-guid]

问题 I have what seems on the face of it a simple requirement when using Azure AD B2C. I have two applications (App A and App B) registered in Azure AD B2C. I want to restrict access so that User 1 can access both App A and App B, but User 2 should only be able to access App A. I can register appRoleAssignments and assign them to a user via the Azure AD Graph API with a zero id as per this question When a user logs in, I can then query these and restrict access myself, but it feels like I'm

问题 I saw this answer and update (Revocation endpoint in Azure AD B2C) but I'm not sure how to use this with Azure AD B2C. I've opened up an Azure Cloud Shell and it comes back that the object ID does not exist. I'm running this from my parent Azure directory because I could not open up an Azure Cloud Shell inside my Azure AD B2C directory (it said "No valid subscription found"). Do you have to run this command from within the Azure AD B2C directory? If so how do I link a subscription so that I

问题 When using custom policies, how can I specify the error page for a <UserJourney> ? Based on the values in the TFP base xml file, I would have thought it would be <RecoveryUri> but that is not working. <ContentDefinition Id="api.signuporsignin-ext-local"> <!-- <LoadUri>~/tenant/default/unified.cshtml</LoadUri> --> <LoadUri>https://localhost:44377/</LoadUri> <!-- <RecoveryUri>~/common/default_page_error.html</RecoveryUri> --> <RecoveryUri>https://localhost:44377/Home/Error</RecoveryUri>

问题 I want to integrate Multi Factor Authentication (MFA) through Azure Active Directory (AD), I checked its documentation and some code samples, then I knew that Azure AD B2C have some of features which suits my requirement, NOTE - I only need MFA feature from Azure AD B2C, I tried this sample code provided in official docs, https://docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-tutorials-spa But I have some of queries: 1) Is there any service in Azure B2C, which can

问题 Angular site hosted on an Azure storage account as a static website receives 500 when it's invoking an Azure B2C-protected Function App function. The function is receiving a 404. Update The original title for this question was "Angular app which invokes B2C-secured Functions App receives 401 Unauthorized response". The solution was, as @Alex AIT suggested (below), to replace the https://<b2c_tenant_name>.b2clogin.com/<b2c_tenant_name>.onmicrosoft.com/v2.0/.well-known/openid-configuration?p=

问题 In Azure AD B2C, there are separate policies for "Sign-up/Sign-in" and "Password reset". I copy the Metadata Endpoint for the "Sign-up/Sign-in" policy and paste it into the Azure App Authentication This basically works, but there is no place to put in the Password reset metadata which has the templates for password reset. I think as a result of this, when you click on "Forgot password", you end up with You do not have permission to view this directory or page. at ~/.auth/login/aad/callback

问题 I am trying to run this Angular 4 example that uses Azure B2C Active Directory and adal-angular 4. To run the app, in Azure I created a tenant, registered a the app in AD B2C and added a reply Url of https://localhost:4200. I then added the app id and tenant to my Angular App. When I run the app, it correctly redirects to https://login.microsoftonline.com... on load for login. Logging in correctly redirects to https://localhost:4200. When I log out, there is a problem. The app is redirected

问题 I want to put a custom message on when a user visits the forgotten password page of B2C. When they enter their email address and their "phonenumber" is not found then it should simply display an error message under the "Continue / Cancel" button saying something like "Not registered, contact Support" (Can be over the email text box as well where normal error messages come if its too much to do under it) I have the user journey and orchestration steps to detect a precondition if phonenumber