The intention is to have 2 flows.
Curent implementation is here https://bspspa-preprod-c4ewe2a2ekf5c0dt.a02.azurefd.net/
-
SSO using Azure Entra ID
- On first login, users are prompted to enter
- Firstname
- Lastname
- DisplayName
- On first login, users are prompted to enter
-
Self Managed using B2C
- Users can register themselves, however the domains allowed to registered are restricted
- As part of testing, *@gmail.com is allowed.
- Users are required to enter
- Firstname
- Lastname
- DisplayName
- Email MFA is required for both
- registering, and
- login
- Users can register themselves, however the domains allowed to registered are restricted
The SSO is working, users can register and login as expected.
The Self Managed registration appears to work fine.
- Users who attempt to register with the wrong email address are rejected
- User accounts are created successfully in the B2C service with all required claims
When a self manager user attempt to login, they are always rejected with the error Invalid username or password
Being able to login
- SSO Claims are automagically populate one registering
- Self Managed
DisplayNamecreated fromFirstNameandLastName