Azure B2C Tenant wise User management

0
votes

I am referring following example : https://azure.microsoft.com/en-in/resources/samples/active-directory-dotnet-webapp-roleclaims/

I have created main (physical) Azure B2C Tenant, in that I am managing virtual tenant.

 e.g. Azure B2C Tenant (Main)
         - Virtual tenant in Storage table 
           - Tenant 1
           - Tenant 2 etc.

But I have single AD and I want to separate the user based on Tenant.

How can I achieve this with Role base user management for tenant ?

1
azureazure-active-directoryazure-ad-b2cazure-ad-graph-api

1 Answers

0
votes

Role based user management is yet not supported in Azure AD B2C. I would recommend you request this in the Azure AD B2C feedback forum.

I can think of two options for you:

  1. Use a custom attribute to assign users their "tenant". You would then need to make sure you set this custom attribute via the Azure AD Graph. You can then include this claim in your token and use it in your application to drive behavior.
  2. Define Azure AD groups that map to "tenants". However, given that in Azure AD B2C, groups are not included in the claims, you won't be able to do what's recommended for Azure AD, instead, you will need to query the Azure AD Graph to retrieve the user's group membership and drive behavoir from that.