Issues in Azure B2C Active directory custom policies customization for Local account

Copper Contributor


We are having few issues or not able to find solution with respect to below requirement Azure B2C AD custom policies customization for Local Account.

Background: We are using B2C AD local accounts to implement SSO for our one web application. We are trying to achieve JIT user migration and for that we have implemented custom policies user flows for sign in and sign up. We are having two different domains for which we are having some unique properties which needs to saved as collection against same local Identity.

We have identified useridentities attribute of User account where we can store information as below:



"issuer": "CLIENT_ID1"

"ïssuerUserId": "shopper_Id1"



"issuer": "CLIENT_ID2"

"ïssuerUserId": "shopper_Id2"



We wanted to retrieve useridentity from above collection based on issuer value.

1. Do we have any claim transformation method which can be used to get useridentity based on issuer value for e.g. “Client_ID1” as input claim?

Also we have noticed while storing issuerUserID its converting actual value in binary and then storing in user account. PFA screenshot.

2. Do we have any claim transformation method which can be used to transform issuerUserID’s binary value to string?

3.      As per the document we can retrieve Client Id value from querystring in custom policies using "{OIDC:ClientId}" but when we actually implemented it in custom policy it is not returning actual GUID, it is storing value in string as is "{OIDC:ClientId}". We want solution for this

<InputClaim ClaimTypeReferenceId="clientId" DefaultValue="{OIDC:ClientId}" />

Thanks in advance. Please help us ASAP we stuck in our implementation



Sameer Salunke

0 Replies