Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more here.

Azure Active Directory

Welcome to the Azure Active Directory suggestions and feedback site! We love hearing from you. If you have suggestions, please submit an idea or vote up an idea. We are monitoring the site actively.

Thank you for joining our community and helping improve Azure AD!

Wehave a new log in experience integrated with Azure AD, and we stronglyrecommend you log in with your Azure AD (Office 365) account. If yourUserVoice account is the same email address as your Azure AD account, yourprevious activities will be automatically mapped to your Azure AD account.  You can read more here for details: https://techcommunity.microsoft.com/t5/Azure-Active-Directory-Identity/Putting-customers-first-for-f...

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. New Event Publisher: Azure AD B2C

    It would be great if we could easily add an azure ad b2c as an event publisher so we can get informed about new, updated or deleted users. Ideally also when they get added or removed to groups etc.

    36 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    7 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →

    We are still working on this one. We’re always passing your feedback along, but make sure you reach out to AAD as well so they hear your voice directly!

    Sorry for the confusion around Microsoft Graph AAD integration. It won’t allow you to connect AAD events to Event Grid just yet, but you can get some AAD related events directly from Graph to work with: https://docs.microsoft.com/en-us/graph/overview-major-services#users-and-groups

  2. Add captcha to sign-up built-in policies

    Add an option in sign-up built-in policies to display a captcha. This will avoid bot being able to sign-up.
    Since javascript is not supported in built-in policies, it cannot be done manually.

    35 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  3. Update Azure AD B2C claims when signing in with social providers

    When an Azure AD B2C account is set up after signing in with a social provider, the basic claim details are populated with data from the social provider, such as surname, given/family name, emails, etc. When this information is changed in the social provider account, can it be automatically updated in the B2C claims on the next sign in?

    In essence, when a Facebook/Google/Microsoft/Amazon/LinkedIn user changes their name, email address, etc. I want their B2C account claims updated to reflect the new info the next time they sign in to my B2C app.

    I am attempting to do this without…

    34 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the feedback. So to clarify, you would the ability to interrupt the user during the sign in process to ensure their info is in sync with the identity provider they are using. Is that correct? Would you like to see this at all times or just when the data is out of sync?

  4. 32 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  5. Bot protection or addition of CAPTCHA to sign up experience in Azure AD B2C

    I am using Azure AD B2C as the authentication solution for a Dynamics CRM Portal application. So far, B2C allows customization of the sign-up experience, which i have done to customize the look and feel of the signup/signin page but I don't see any option to incorporate a CAPTCHA.

    Why not have some sort of bot-protection mechanism that can detect and block robots during AD B2C Sign Up process like CAPTCHA or anything else ?

    31 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  6. Azure AD B2C Custom attributes on User Profile

    I created a simple Azure AD B2C application, and added a custom user attribute for new users to enter when they register. When I go to the User Profile in the Azure B2C User blade for any user, I do not see that custom attribute to update it for existing users.

    How can I update those properties for existing users?

    31 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  7. Support PIM on AAD B2C Tenants

    Today, in a B2C tenant no licenses can be purchased or obtained from trial. Unfortunately - Priveleged Identity Management requires a P2/E5 license to function and therefore cannot function on an AAD B2C tenant

    In a B2C tenant the same paradigms of PIM for administrators apply – (just in time access, just enough access, access reviews/audit history, time-bound, and break glass approval to activate ) to our AAD B2C Administrators. Without PIM our only option is to provide them standing administrator access which goes against security best practice and standards.

    There exist various different administration job responsibilities in a B2C…

    30 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  8. Upgrade vulnerable version of jQuery currently used by B2C

    B2Clogin.com is currently using a very out of date, and vulnerable version of jQuery library. Please provide a estimate of when a more secure version will be adopted

    30 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  9. Enable hrefs in B2C custom UI and custom policies for T&C's and Usage Policy Acceptance processes

    I work with many clients who want to have their Terms and conditions hyperlinked to a extension attribute similar to how the Real Madrid Signup Page was built. If this is doable within the current solution, please provide documentation of how to achieve it as we cannot currently use JavaScript to achieve this.

    30 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  10. Pre-populate username field with value from the query string like old Sign-In Policy

    You provide policies for Sign-In, Sign-Up and Sign-In or Sign-Up. The "Sign-In" policies do not allow page customization because they are using an older (pre B2C) way of doing things. However, one advantage the Sign-In policy has is that I can add &username=myUsername and it pre-populates the Username field with this value.

    In our system, we already know the username before we send them to the "sign-up or sign-in" Policy screen, and we'd like to add the username to the query string so the value is already populated.

    30 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  11. AADB2C: Support Twitter

    B2C currently supports authenticating with various social networks, but not Twitter. Please consider supporting Twitter as well.

    30 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  12. Show custom fields in User profile

    Show custom fields in User profile.
    It's not obvious/user friendly to view/edit custom properties only by Graph API.

    28 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  13. Send a User Agent when an Azure AD B2C custom policy calls a REST API.

    If a Web Application Firewall (WAF) is configured on an Azure Application Gateway, then a request from B2C will be blocked with an HTTP response of 403 because the request doesn't include a User-Agent header.

    A workaround is to disable the WAF rule, but it'd be nice to not need to disable WAF rules in order to use custom B2C policies.

    27 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  14. Add Cancel button to Azure AD B2C SignIn and combined SignIn/SignUp default UI

    The default UI associated with the SignIn and combined SignIn/SignUp policies needs to include a Cancel button just like the SignUp screen of the SignI/SignUp policy UI does.

    26 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  15. Enable B2C apps to consent access to Graph API

    Just like the apps in the App Registration Portal, B2C apps should be able to be granted access to the Graph API.

    26 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  16. Support OAuth 2.0 Device Flow in Azure B2C

    Add support for Device Flow (browserless authentication) https://www.oauth.com/oauth2-servers/device-flow/ in Azure B2C

    25 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  17. Want to use email as MFA for Azure B2C

    We have to identify our customers, that they cannot use his company credentials when they left the company.
    A cell phone number or authenticator app will still work, specially we don´t get informed that someone has been fired or left the company.

    But normally an company mail account will be locked, and no one can use the credentials any more.
    We implemented something similar with a Custom Authentication Provider for Active Directory Federation Services for a single IIS Application, but we want to use AZURE B2C for our new Customer Portal.

    25 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  18. AADB2C: Allow wildcard in reply url

    AAD v1 applications allow use of wildcard in reply urls.
    Please allow this in B2C also.
    Example: https://site.domain.com/*

    23 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  19. Add custom header support for Azure AD B2C Custom Policies

    Currently, when using custom policies to create Custom Identity Providers, it is not possible to specify headers such as accept=application/json, which limits many providers from being set up as custom providers. For example, GitHub returns access_token in body as form (url-encoded) rather than as a json, but this breaks custom policies. This can be easily fixed with header support.

    23 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  20. Reply url limited to 20

    At this time, Azure AD B2C applications can only have 20 or less reply URLs. Please remove this limit, so we can add more application to it.

    23 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base