Homepage
Open in app
Sign in
Get started
The new control plane
“Identity is the new control plane”
Authentication
Auth0
identityserver4
Azure AD
Follow
Adding custom/extension attributes to the JWT in Entra External ID (CIAM)
Adding custom/extension attributes to the JWT in Entra External ID (CIAM)
Read this post first.
Rory Braybrook
Aug 8
Working with custom/extension attributes in Entra External ID (CIAM)
Working with custom/extension attributes in Entra External ID (CIAM)
This is a utility post, as I will post more about extension attributes, but it can live on its own.
Rory Braybrook
Jul 30
Easy Auth with Entra External ID and Azure app services
Easy Auth with Entra External ID and Azure app services
Entra External ID is also called CIAM.
Rory Braybrook
Jul 14
Using the Verified ID code sample for Woodgrove Helpdesk with Entra ID VC
Using the Verified ID code sample for Woodgrove Helpdesk with Entra ID VC
The use case is “showcasing identifying yourself at a help desk by presenting your VerifiedEmployee card.
Rory Braybrook
Jul 9
Using PowerShell to look at an Entra External ID JWT
Using PowerShell to look at an Entra External ID JWT
There’s a useful cmdlet here.
Rory Braybrook
Jul 4
Working with user attributes using Entra External ID for Customers
Working with user attributes using Entra External ID for Customers
I see a number of questions around this over on stackoverflow.
Rory Braybrook
Jun 18
Federation vs sign-up vs guest in Azure AD B2C
Federation vs sign-up vs guest in Azure AD B2C
I’ve answered a few questions lately about this over on stackoverflow.
Rory Braybrook
Jun 13
Using native authentication in Entra External ID to sign in a user with email and OTP
Using native authentication in Entra External ID to sign in a user with email and OTP
First, read this post, as it covers a lot of the basics.
Rory Braybrook
May 27
Mix and match with user flows and custom policies in Azure AD B2C
Mix and match with user flows and custom policies in Azure AD B2C
Whenever new B2C users ask me whether to start with custom policies or user flows, I always tell them to start with custom policies.
Rory Braybrook
May 23
Error with Azure AD B2C federation with Entra ID
Error with Azure AD B2C federation with Entra ID
I was trying to set up the Identity provider in B2C and got this message:
Rory Braybrook
May 23
Connecting Azure AD B2C as an SP to Entra ID via SAML
Connecting Azure AD B2C as an SP to Entra ID via SAML
I’ve written several “Connecting” posts over the years describing how to connect one IDP to another.
Rory Braybrook
Apr 29
Federating with Azure AD B2C without creating a shadow account
Federating with Azure AD B2C without creating a shadow account
This is a question that has popped up on stackoverflow a number of times recently.
Rory Braybrook
Apr 23
Using CAPTCHA in an Azure AD B2C custom policy
Using CAPTCHA in an Azure AD B2C custom policy
There is very little new development in B2C. It’s pretty much code complete, but then I noticed a new feature: the CAPTCHA feature has been…
Rory Braybrook
Apr 22
Using native authentication in Entra External ID to run the SSPR flow for a user with email and OTP
Using native authentication in Entra External ID to run the SSPR flow for a user with email and OTP
Please read my previous post first.
Rory Braybrook
Apr 16
Using native authentication in Entra External ID to sign up a user with email and OTP
Using native authentication in Entra External ID to sign up a user with email and OTP
First, read this post, as it covers a lot of the basics.
Rory Braybrook
Apr 9
Using native authentication in Entra External ID aka bring your own login screen and login with…
Using native authentication in Entra External ID aka bring your own login screen and login with…
Back in the day when ADFS came out, the first question I was asked was “Can I customise and use my own login screen” — sorry, no.
Rory Braybrook
Apr 2
How many ways are there to onboard Guest accounts in Entra ID?
How many ways are there to onboard Guest accounts in Entra ID?
I’ve been writing some posts about guest accounts and wondered how many ways there were to do this.
Rory Braybrook
Mar 25
Onboarding with a TAP using Entra Verified ID (Guest user onboarding)
Onboarding with a TAP using Entra Verified ID (Guest user onboarding)
I covered employee onboarding here. Read that post first, as it has a lot of background that I am not going to repeat.
Rory Braybrook
Mar 21
Onboarding with a TAP using Entra Verified ID (Employee onboarding)
Onboarding with a TAP using Entra Verified ID (Employee onboarding)
The GitHub sample is here.
Rory Braybrook
Mar 14
Using the wizard to set up Entra Verified ID
Using the wizard to set up Entra Verified ID
When Verified ID came out, you had to set everything up manually.
Rory Braybrook
Mar 7
Running the Entra External ID for Customers (CIAM) user flows inside the portal itself
Running the Entra External ID for Customers (CIAM) user flows inside the portal itself
In Azure AD B2C, with the built-in user flows, there was a “Run user flow” button inside the portal so you could test the user flow without…
Rory Braybrook
Mar 4
Entra links I use
Entra links I use
I created this post for me just to be able to get at shortcuts I use all the time:
Rory Braybrook
Mar 3
Where do I go from Identityserver4?
Where do I go from Identityserver4?
I’ve been talking to several people recently who are using Identityserver4 but who now want to replace it, as it was only maintained with…
Rory Braybrook
Feb 29
Authenticating with Entra External ID for Customers (CIAM) with the device code flow
Authenticating with Entra External ID for Customers (CIAM) with the device code flow
This flow is usually called “device code flow”, but the documentation calls it “device authorization grant flow”.
Rory Braybrook
Feb 25
Removing the sign-up option in Entra External ID for Customers (CIAM)
Removing the sign-up option in Entra External ID for Customers (CIAM)
In Azure AD B2C, you have different user flows, so if you don’t want the user to sign up, you simply create a sign-in-only user flow.
Rory Braybrook
Feb 20
About The new control plane
Latest Stories
Archive
About Medium
Terms
Privacy
Teams