Learn What IT Pros Need to Know About Windows 11 - August 26th at 1 PM ET! Learn What IT Pros Need to Know About Windows 11 - August 26th at 1 PM ET!
Microsoft Azure

Azure AD Now Supports Facebook and Google Logins, Microsoft Accounts Coming Soon

Microsoft is putting identity management at the center of its security strategy, and as part of this ongoing program has announced the availability of the Azure AD B2C service, which will allow businesses to authenticate users via pre-existing Facebook and Google logins, and in the near future Microsoft accounts too.

Azure AD B2C is an enterprise grade cloud service that supports authentication using popular consumer identity services, saving businesses the expense of separately creating and managing identities for customers that want to connect to its services.

Azure AD B2C tenants

Businesses can create one or more Azure AD (AAD) B2C tenants, which differ from standard AAD tenants in that users cannot see each other in the address book. Once created, applications can be registered in the tenant, social network providers added, and policies created to determine the various sign up, sign in and identity management processes. Applications can use OAuth 2.0 or OpenID Connect to request user identity information, and Microsoft’s servers handle passwords and run anomaly detection checks.

When creating a sign-up policy, you can specify the attributes that should be populated, i.e. the information you want to collect from users, the identity providers permitted, which can include self-asserted email signup, and finally Application Claims are set in the policy to determine what attributes are sent to applications.

Sponsored Content

Read the Best Personal and Business Tech without Ads

Staying updated on what is happening in the technology sector is important to your career and your personal life but ads can make reading news, distracting. With Thurrott Premium, you can enjoy the best coverage in tech without the annoying ads.

Multi-factor authentication is optional, requiring users to verify a code sent to their mobiles. Finally, the end-user experience can be customized by specifying the HTML and CSS that B2C will use to render the final pages, but if you don’t want to do this, you can opt to use the default templates provided.

Pricing and roadmap

Microsoft says that pricing will be announced closer to general availability, but there will be a free tier for the first 50,000 identities, and then on a pay-as-you-go basis will depend on the number of users in the directory, quantity of authentications, and quantity of multi-factor authentications.

There are lots of plans for Azure AD B2C, not all of which Microsoft has yet revealed, but currently comprise of improving the UI customization options — including enabling JavaScript — additional language support, the ability to control the lifetime of Access Tokens, ID Tokens, and Refresh Tokens, support for additional identity and custom identity providers, and the option to run reports that quickly give an activity overview.


Related Topics:


Don't have a login but want to join the conversation? Sign up for a Petri Account

Comments (0)

Leave a Reply

IT consultant, Contributing Editor @PetriFeed, and trainer @Pluralsight. All about Microsoft, Office 365, Azure, and Windows Server.

Register for Advanced Microsoft 365 Day!

GET-IT: Advanced Microsoft 365 1-Day Virtual Conference - Live August 24th!

Join us on Tuesday, August 24th and hear from Microsoft MVPs and industry experts about how to take advantage of Microsoft 365 at a technical level and dive deep into the features and functionality that will make your environment more secure and compliant.


Sponsored By