You need to sign in to do that
Don't have an account?
David Russell 42
Azure B2C as OpenID IdP for Salesforce
The goal is to have local Azure B2C accounts signing into our Salesforce domains.
1) When I configure Salesforce to use our B2C tenant endpoing URLs without a policy query string, it only works for my B2C administrator account. All other accounts fail to authenticate to B2C, with error:
2) When I configure SalesForce to use our B2C policy endpoint URLs, those users can authenticate to B2C but when they are redirected to Salesforce, Salesforce gives an error that an access token was not received.
I have uploaded two PDFs (one showing nopolicy config, the other showing the policy config) here. Hoping someone can help!
1) When I configure Salesforce to use our B2C tenant endpoing URLs without a policy query string, it only works for my B2C administrator account. All other accounts fail to authenticate to B2C, with error:
Message: AADSTS50020: User account 'MyName@domain.com' from identity provider 'domain.com' does not exist in tenant 'My Company Name' and cannot access the application 'MyApp' in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account.
2) When I configure SalesForce to use our B2C policy endpoint URLs, those users can authenticate to B2C but when they are redirected to Salesforce, Salesforce gives an error that an access token was not received.
I have uploaded two PDFs (one showing nopolicy config, the other showing the policy config) here. Hoping someone can help!
All Answers
FWIW using custom policies and SAML in B2C you can SSO from B2C into SFDC working just fine. But I'd really like to see OIDC work, without the need for custom policies, since that method has a very steep learning curve.
were you able to resolve this issue? we are running into a similar issue in configuring Azure AD B2C to do single sign on into Salesforce communities. I appreciate your help.
https://www.linkedin.com/pulse/using-azure-ad-b2c-identity-provider-salesforce-conor-langan/ (https://www.linkedin.com/pulse/using-azure-ad-b2c-identity-provider-salesforce-conor-langan/)