Azure AD B2C verification email customization - azure-ad-b2c

What steps are needed to customize the verification email sent by the Sign-up policy in Azure AD B2C? I have followed the MSDN faq and updated the Company branding with a banner image and a background color.
However the email which is sent is still the default email and my edits of the branding are not applied.
EDIT:
According to this page it seems as the Azure AD B2C need to be upgraded in order to use the company branding: Is this correct? And if so, how can i upgrade the tier to premium?
It seems odd since it was possible to edit the company branding without upgrading the tier.

It is now resolved.
This problem was caused by a bug in Azure.
After communication with the developer team they fixed it and the company branding started working.
To clarify: you donĀ“t need to upgrade anything in order for company branding of the verification e-mail to work.

Related

how to enable feature enable_multiple_brands in branding api of one login

I am getting this error while creating account brand in OneLogin I am attaching the screenshot below branding api error message
This must be enabled by your OneLogin account manager. It must be a production, paid account and not a developer or trial account. If you do not have an account large enough for an account manager, you can reach out to:
sales#onelogin.com (or olsm#quest.com) and CC license#quest.com

Azure b2c Custom email verification doesn't work

I have several days trying to customize the email verification of my project but it's been impossible to change anything.
I followed many times:
https://learn.microsoft.com/en-us/azure/active-directory-b2c/custom-policy-get-started
https://learn.microsoft.com/en-us/azure/active-directory-b2c/custom-email-sendgrid
https://learn.microsoft.com/en-us/azure/active-directory-b2c/custom-email-mailjet
I uploaded the new custom policies B2C_1A_TrustFrameworkBase and B2C_1A_TrustFrameworkExtensions with all the changes described in the manual, but I still don't know why I can't even generate an application error and the default Microsoft email verification keeps working normally, is there any way to track what I might be missing?
You can refer to the troubleshoot documentation about turning the B2C engine into developer mode and tracking the B2C engine itself.
There is a separate documentation and technical profiles explaining how to use application insights to track user behavior during user journeys. You can discover more about this here: https://learn.microsoft.com/en-us/azure/active-directory-b2c/analytics-with-application-insights

Brand Azure AD B2C emails

Does anyone know if there's a way to brand the emails sent by Azure AD B2C?
This page https://learn.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-reference-ui-customization says the features use company branding instead of specific B2C branding, but this doesn't seem to have any options for the emails just sign in page.
The level of branding looks quite limited, see the below FAQ:
Azure B2C emails inherit the logo and company name set in custom branding, no way to change the from field.
As stated by James, they are not very customizable.
Please see this UserVoice item request the B2C to improve this.
There is some movement, you can now send mails through an external mail service.
https://learn.microsoft.com/en-us/azure/active-directory-b2c/custom-email
This provides a lot of options for customization.

How to change email verification code to a link for verification emails in Azure AD B2C

Can we customize the content of verification emails to include a redirect link instead of code sent by SignUpOrSignin custom policies in Azure AD B2C - Identity Experience Framework?
Sample verification email:
I was referring to a document below, unfortunately I could not find any workaround:
https://learn.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-faqs
At this time, it is not possible to use a redirect link instead of a verification code in Azure AD B2C's account verification experience.
As per the Azure AD B2C FAQs you referenced, you can use the company branding feature to customize the content of verification emails.
Specifically, you can customize:
Banner Logo: Shown at the bottom-right.
Background color: Shown at the top.
Also, the email's signature is based on your tenant's name.
You can always request this feature in the Azure AD B2C feedback forum
Update in 2021
For people still referencing this post, as of June 2019, there is sample project that gives a good overview on how to implement a magic link as sign-in. This doubles a verification of the email as well.

Cannot add further co-administrators using Microsoft account when SSO also configured

We have a number of Azure subscriptions with various co-administrators in our environment. To date, we have used people's Microsoft accounts to grant co-administrator rights, and of course many use their corporate [username]#[company domain] email address for these.
Some time ago, we enabled Azure directory, synchronized to our on-premise AD, where accounts have also been # - and all was good. When adding new co-admins, we simply had to choose if we wanted to use their MS account or their organizational account.
However, we're now seeing the following error when adding some users' Microsoft accounts to some subscriptions:
The Microsoft Account '[username]#[company domain]' cannot be made a co-administrator as its domain is the same as one of the Verified Domains of the target subscription's directory.
Has anyone else seen this - is it an intentional change in behaviour? It seems somewhat inconsistent...
i had the same issue, then I used the new preview portal and it worked.
try it out
According to Microsoft support, this change in behavior is intentional.
(Since posting the question, they have also sent email notifications that any co-admins with Microsoft accounts outside of the Azure Directory will be added as guest accounts in the subscription's directory.)

Resources