Azure Ad b2c change Supported account types to "Accounts in any identity provider or organizational directory (for authenticating users with user flows)"

Henry Mao 21 Reputation points
2022-06-21T06:48:29.967+00:00

We suppose to create an application in azure AD b2c using supported account types "Accounts in any identity provider or organizational directory (for authenticating users with user flows)".
213254-image.png

But it was created using "Accounts in this organizational directory only"

Now how do I change the support account type?
the only 2 option is
Accounts in this organizational directory only (Aware Super Test03 B2C Members only - Single tenant)
Accounts in any organizational directory (Any Azure AD directory - Multitenant)
213180-image.png

Azure FastTrack
Azure FastTrack
Azure: A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.FastTrack: This tag is no longer in use. Please use 'Azure Startups' instead.
75 questions
Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,740 questions
0 comments
Accepted answer
  1. Shweta Mathur 29,186 Reputation points Microsoft Employee
    2022-06-21T09:58:50.25+00:00

    Hi @Henry Mao ,

    Thanks for reaching out.

    I understand you are trying to update supported account types from "Accounts in this organizational directory only" to "Accounts in any identity provider or organizational directory (for authenticating users with user flows)" but not able to find option to do that.

    To achieve that, you need to update the "signInAudience" in the Manifest.

    Navigate to your application in Azure AD for which you want to update supported account types in portal.
    Then under Manage-> Click on Manifest in the portal blade and search for "signInAudience" parameter.

    Currently the signInAudience for you would be "AzureADMyOrg" as shown below.

    213298-image.png

    You need to update "AzureADMyOrg" value to "AzureADandPersonalMicrosoftAccount".
    Also,if signInAudience is AzureADandPersonalMicrosoftAccount, then accesstokenAcceptedVersion parameter also need to update from null to 2 and save the changes.

    213333-image.png

    This will update the supported account types to Accounts in any identity provider or organizational directory (for authenticating users with user flows)" and reflect the same in application registration.

    213372-image.png

    Hope this will help.

    Thanks,
    Shweta

    ----------------------------

    Please remember to "Accept Answer" if answer helped you.

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest