Facebook authentication issue due to service-wide changes. RESOLVED for all Standard Azure AD B2C tenants.

ISSUE: Today, March 27, 2017, at  1235h PST, the Azure AD B2C monitors detected failures in new authentications when Facebook was used as the identity provider (most existing sessions would continue unaffected).   The team has discovered that Facebook has implemented a change in the method they use to send their response from the access_token…


Important change notification for developers parsing Azure AD B2C responses outside of a library, effective December 13th, 2016

Impact: While most Azure AD B2C customers will be unaffected, those that are affected may fail to parse authentication responses from the B2C service. Hello developers, We on the Azure AD B2C team are looking to expand our OpenID Connect standards compliance, and increase support for 3rd party libraries such as the OIDCAndroidLib for Android. As part…


How do I delete my Azure AD B2C tenant?

This is a frequently-asked question from customers. The answer has already been published here, but I’m cross-posting it on the service blog for easy access. Continue to monitor the FAQ link for the latest info. – Swaroop K, Program Manager, Azure AD B2C Follow these steps to delete your Azure AD B2C tenant: Follow these steps to navigate to…


Key rollover announcement – Sep 29th 2016

Key rollover conducted on Sep 29th 2016 On Sep 29th 2016, we rolled over the keys used to sign JWT tokens issued by Azure AD B2C. The old key will be removed on Oct 13th 2016 (11‎:‎48‎:‎07‎ ‎AM GMT-7:00 DST) and the new key will be used (from that point on) by Azure AD B2C to sign token…


IMP: Upgrade your application to a newer version of the ADAL library for it to continue to work on iOS 10

If your app uses the Azure Active Directory Authentication Library (ADAL) for iOS Experimental (version <= 3.0.0-pre6) for Azure AD B2C, read this important announcement. Based on our telemetry, this is a small % of apps using Azure AD B2C today. We have emailed these app owner directly. If you haven’t received any emails from us, you…


Known Issue: B2C Application Management

We have recently observed that some Azure AD B2C customers, who created B2C applications on the Azure portal, are managing it incorrectly. Read this post to ensure that you don’t leave your B2C applications in an unsupported state. B2C applications should NOT be edited: On other application management portals such as the Azure classic portal & the Application registration portal. Using Graph API or PowerShell….


Issue Mitigated: Azure AD B2C’s JWT tokens don’t have the ‘kid’ value pair in headers – 8/8/2016

Issue mitigated: Monday, 8th Aug 2016 9:08 PM PST The issue was mitigated.  Operations should be back to normal. The “kid” header for the previous valid key now appearing in new JWT tokens -Jose   Interim update: Monday, 8th Aug 2016 6:30 PM PST We are actively working on this issue and will provide another update…


Key rollover announcement – Aug 1st 2016

Key rollover conducted on Aug 1st 2016 On Aug 1st 2016, we rolled over the keys used to sign JWT tokens issued by Azure AD B2C. The old key will be removed on Aug 8th 2016. This is a part of our ongoing efforts to deliver a secure identity service. Please read on, as this note has…


Azure AD B2C is now GA in North America

Welcome to the Azure AD B2C service blog! We’ll use this blog to post service notifications & minor updates. You should continue to monitor other official channels as well. To kick start this blog, we have some great news! Today we announced the general availability of our service in North America. Read this blog post…