stackoom
  简体   繁体   中英

Azure B2C: How to use OtherMails attribute for MFA

 原文  2022-02-17 14:39:55       azure-ad-b2c/ azure-ad-b2c-custom-policy/ aad-b2c

Question

I am using B2C custom policies which allows signup/signin with the username instead of the traditional email.

As part of the signup process, I am saving the Email in the otherMails attribute.

when choosing MFA as Email, I don't see the email field prepopulated with the email that I have on user record.

Can otherMails attribute be used for MFA email? 

<ClaimsTransformation Id="CreateEmailsFromOtherMailsAndSignInNamesInfo" TransformationMethod="AddItemToStringCollection">
    <InputClaims>
            <InputClaim ClaimTypeReferenceId="otherMails" TransformationClaimType="collection" />
    </InputClaims>

<TechnicalProfile Id="AAD-UserWriteUsingLogonName">
    <PersistedClaims>
        <PersistedClaim ClaimTypeReferenceId="otherMails" />
    </PersistedClaims>
    <OutputClaims>
        <OutputClaim ClaimTypeReferenceId="otherMails" /> 
    </OutputClaims>

<TechnicalProfile Id="LocalAccountSignUpWithLogonName">
    <OutputClaims>
        <OutputClaim ClaimTypeReferenceId="otherMails" /> 
    </OutputClaims>
<TechnicalProfile Id="LocalAccountDiscoveryUsingUserNameAndValidateStrongAuthenticationEmailAddress">
    <OutputClaims>
        <OutputClaim ClaimTypeReferenceId="otherMails" /> 
    </OutputClaims>
<TechnicalProfile Id="AAD-ReadCommon">
    <OutputClaims>
        <OutputClaim ClaimTypeReferenceId="otherMails" />
    </OutputClaims>

<RelyingParty>
    <OutputClaim ClaimTypeReferenceId="otherMails" PartnerClaimType="emails" />
</RelyingParty>

1 answers

solution1
 0  2022-02-17 18:37:54

The field used for MFA is "strongAuthenticationEmailAddress".

That's used by the back end so I doubt it can be changed.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Azure AD B2C MFA and remember device How to fetch authentication methods or MFA phone number of azure ad b2c users using MS graph API Is there a way to complete a mobile MFA without using a mobile number in Azure AD B2C? Store "mobilePhone" in contact info during registration - Azure AD B2C Custom policy + MFA Minimum Requirements To Use MSAL For Azure B2C How to register/setup Azure B2C WEB Api and SPA to use Auth Code Flow? AAD B2C MFA Error when sending a new code Could we use Azure Active Directory(AAD) B2B and B2C in single application??? B2B for Microsoft Intune access and B2C for user login/signup How to deal with multiple APIs with Azure B2C How to mark an Azure AD B2C App as Publisher Verified
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM