How to mark an Azure AD B2C App as Publisher Verified
Question
I have a working Xamarin Forms app that uses Azure AD B2C to login to providers such as Microsoft, Google, LinkedIn, Apple, etc. The login process works smoothly except that I get the message "Let this app access your info? unverified". See picture below:
I know how to resolve this issue for an Azure AD application. See Publisher verification and app consent policies are now generally available
The Azure documentation clearly states that this is not supported for Azure AD B2C Apps. Is there an alternate way to get past the "unverified" messsage? This is causing a massive adoption problem for my app as downloaders are hesitant to login to an app with an "unverified" publisher.
Any and all help will be appreciated.
2 answers
solution1
0 2022-01-19 11:01:16
• Sorry, there is no way through which we can mark an Azure AD B2C application publisher as verified. Though, you can register that application as an internal Azure AD application and ensure that it is publisher verified which will in turn make the 'unverified' tag go away during the login process.
a) Also, ensure that the domain of the mail ID used to register for MPN (Microsoft Partner) account verification should be the same one configured as a custom domain and verified in your Azure AD tenant in which you wish to register the Xamarin form application.
b) The user account should be assigned one of the following roles: - MPN admin, Accounts admin or a Global admin in partner center account and application admin, cloud application admin or a global admin in Azure tenant.
c) This user account must sign into the Azure AD tenant using MFA and the publisher should agree to the Microsoft Identity Developer Terms of Use.
Please refer the below link for the documentation on marking an application publisher as verified in Azure AD: -
https://docs.microsoft.com/en-us/azure/active-directory/develop/mark-app-as-publisher-verified
Would also suggest you to please refer this below SO thread for more information as it explains further publisher domain verification in Azure AD: -
solution2
0 ACCPTED 2022-02-12 05:00:56
I finally succeeded in marking my Azure AD B2C application as publisher verified. Now I no longer get the "unverified" description in the access screen. To do this, I followed the instructions here:
It is especially important to know that the MPN id cannot be set by a user interface but you have to use Graph Explorer to set it.
The code below is an example of using Graph Explorer to set the MPN Id: Where appObjectId is the object id of your AD B2C App. It is NOT the app id but the object id. The VerifiedPublisherID is your MPN Id that you wish to set.
POST /applications/appObjectId/setVerifiedPublisher
{
"verifiedPublisherId": "12345678"
}
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.