I have an existing Azure AD B2C tenant, in which the main blade has a policies section as shown below.
However when I create a new tenant, I dont see polciies section in the blade on the left.
Existing tenant
New tenant
This is the new UI of Azure AD B2C.
the basic policies are rebranded as User Flow.
If you see blade in the new tenant, you will see User Flow option.
Also click on the welcome link in the tenant overview blade to understand the changes.
Soon all the new and old tenants will get the new experience.
If you want to use the old portal for sometime, please go to http://aka.ms/b2coldportal and choose your tenant from tenant selection blade.
Related
I am trying to customize the Developer Portal in the APIM.
One thing that is important to me is user management. I want to use Azure AD B2C to handle all of my user Authentication/Authorization and remove DevPortal's own sign-in/signup section.
I could get rid of those widgets but the User profile is the issue now. My problem is not about widgets.
I don't see anywhere to update the user profile.
User info is so limited (user_name, last_name)
I want to update users from AD B2C and see that extra info in the portal. Is there any way to update user dto in the portal?
I want to update users from AD B2C and see that extra info in the
portal. Is there any way to update user dto in the portal?
One of the workaround you can follow to achieve the above requirement,
To customize the APIM developer portal by adding authentication method as Azure AD B2c we need the following perquisite first;
Create AzureAD B2c tenant.
Add user flow (Signin-signup policy)
Register an application in that tenant .
Add secret and copy the value to use in next .
So, To remove the identity as username and password you can delete them as shown below;
After creating all the aforementioned perquisite now click on Add and select the identity as Azure AD B2C and provide the required details.
For e.g;-
Select the identity as Azure AD B2C and provide the required details;
After done with the above steps Navigate to Developer portal and click on sign to check if the Azure AD B2C authentication is added or not.
For more information please refer this Tech-community blog |How to integrate Azure Active Directory B2C into Azure API Management Developer Portal.
And this ;
MICROSOFT DOCUMENTATOIN| How to authorize developer accounts by using Azure Active Directory B2C in Azure API Management .
Similarly, If want to authenticate with Azure AD we can do in the same way by selecting identity provider as Azure Active directory.
I have an Azure AD B2C tenant and when I go to the 'Overview' tab, I see the following message:
This is not an Azure AD B2C directory. To create a new B2C directory & manage your consumer identities in the cloud, click the articles below.
I don't understand why this is being displayed, and what the implications would be.
I thought that it was impossible to have a tenant without a directory.
How do I fix this issue?
I think what you see should be this prompt:
The reason is that you are currently logged in to the directory of the Azure AD tenant and not the directory of the Azure B2C tenant. When you click the Azure AD B2C tab in the Azure AD tenant directory, you will receive this prompt.
So, make sure you have a B2C tenant, and then select Directory + Subscription filter in the top menu of the Azure portal, and then select the directory that contains Azure AD B2C tenants.
In my case Azure Portals incapability to update (and show) the newly created (B2C) directory was the problem. A logout / login solved this.
I am unaware how much time needs to pass though ;).
All,
I have been trying for hours to show to Identity Providers menu in Azure AD B2C to no avail as I need to add FB as Identity Provider. May I know if there is a role I need to assign myself. I have assigned all roles to myself including the global administrator role.
Based on your screenshot, It shows:
This is not an Azure AD B2C directory. To create a new B2C directory &
manage your consumer identities in the cloud, click the articles
below.
Make sure you follow the steps to create the B2C tenant.
If you have created it, you need to switch to the B2C tenant.
I would like to change the Azure AD B2C default sign-in picture using the steps listed in this Stack Overflow answer.
However, when I log into the Azure Portal and find my instance of Azure AD B2C, and click into it, I see the following lefthand sidebar, which doesn't include the "Users and Groups" tab under the "Manage" section, but only includes the "Users" tab (which, if clicking into it, doesn't have "Company Branding" tab inside).
How can I find the "Company Branding" tab? Do I have to upgrade my subscription or something to have access to it?
(Also, one difference I noticed between the screenshots in the SO answer linked above and the screenshot I provided is that the link's Azure AD B2C instance name is spottedmahnb2c.onmicrosoft.com; the name of my instance is login.mydomain.com. Potentially this points to the difference.)
UPDATE
It seems that there is no "Basic" vs "Premium" subscription for Azure AD B2C. However, I am adding a bit more information.
This is the link that describes how to modify the login UI for AADB2C. However, when clicking on the "Company Branding" link, it takes me to an AAD page. Does that mean in order to customize the login UI for AADB2C, I have to visit AAD's "Company Branding" page?
In an Azure AD B2C tenant, you have access to two (2) different menus for tenant admin.
Azure AD B2C
Azure Active Directory
The second one has the access to Users and Groups and Company Branding.
In the portal.azure.com, upper right, within the context of your b2c tenant, select All services then search for "b2c" or for "Active Directory" to find select the menu blade.
The "Company Branding" option is useful ONLY for the b2c sign-in journey/policy. All other policy types are customized following this guide: Azure Active Directory B2C: Customize the Azure AD B2C user interface (UI).
From within your B2C Tenant
Go to Azure Active Directory
Select Company Branding -> Edit
Note: The company branding link was under B2C -> All users previously. Reference.
Previous
Missing for me too. Must be an issue in Azure. Azure Support on Twitter could probably help.
I've been following this guide to get a B2C AD up and running
Create the B2C directory in the old portal (http://manage.windowsazure.com) ensuring "This is a B2C Directory" is checked.
Register an application in the new portal (http://portal.azure.com) under the B2C blade
Create the sign in policy.
When I try and test the sign in policy with the "Run now" and try and log in with my local account (the same one which has created the B2C AD -- the global administrator for this new AD) all I am met with is "We don't recognize this user ID or password".
What have I missed here?
I am able to reproduce this issue too. If you want to manage the users for the Azure B2C tenant, you can login the classic Azure Portal from here. However, currently there are a couple of known issues with user management (the Users tab) on the Azure classic portal:
Refer here about the Azure Active Directory B2C: Limitations and restrictions.
And if you want Azure AD to enable to login with the default global admin account, you can submit the feedback from here.