web
You’re offline. This is a read only version of the page.
close
Skip to main content

Announcements

Agent Academy Hackathon is happening now!
Welcome to the Power Platform Communities
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Pages / Manage Azure AD B2C re...
Power Pages
Unanswered

Manage Azure AD B2C registration only from Dataverse and prevent external profile updates

(0) ShareShare
ReportReport
Posted on by David Pezzoli 230

Hello everyone,

My Power Portal must respect following authentication constraints

  • Using Azure Active Directory B2C as Identity Provider;
  • External Users mustn't Signing-Up!
  • Only Back-Office must register contacts in Power Pages Portal and provide invitation to users by email notification;
  • Only Back-Office decide who to give access to and with which email address;
  • The invitation message provide indications: the identity email address that the external user must enter to SignIn;
  • The new external user can only Sign In using the e-mail provided by Back-Office and the password;
  • External users mustn't change Authentication email address;

In summary, only Back-Office administers contacts and manages SignIns from Dataverse Contact table.

 

  • (Optional) External User can change password (reset password);
  • (Optional) External User can receive a temporary password or invitation code;

My question is:

What is the best and fastest way (low customizations) to create this authentication with Azure AD B2C, please?

 

Many Thanks!

Categories:
Security
I have the same question (0)
  • Fubar Profile Picture
    Fubar 8,497 Super User 2026 Season 1 on at

    First you need to recognize that B2C and Power Pages are 2 separate things.  B2C is the external identity provider (think of it like you do Facebook) and the Power Pages is just configured to trust it.

     

    As they are 2 different things you need to approach it as such e.g. if you need to stop externals registering in B2C then you need to stop the registration in B2C and 'push' only those you want to sign-in into it.

    Stopping external power pages registration is turning of Open Registration and enabling Invitations.

     

    Reading a little bit between the lines what you will probably want is to (simplified):

    • Create Contact in Dataverse
    • Push that Contact to B2C using the Graph API (using custom code or power automate flow)
    • Create External Identity record in Dataverse (External Identity table is the link between the contact and external identity provider) populated with amongst other things the GUID from B2C user (that you get when you create the contact in B2C)
    • Update the Contact record, there are several fields that also need to be populated, Login Enabled, Security Stamp (populate with any guid), possibly one or 2 more
    • if not using Authenticated User inheritance, add a Web Role to the Contact record
    • Wait 15 mins (SLA of the portal's cache), then send email with login details.

    (Note: it also possible to customize B2C to do things like check a user registering exists in another system etc) 

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Agent Academy Hackathon is happening now!
Welcome to the Power Platform Communities

Quick Links

Introducing the 2026 Season 1 community Super Users

Congratulations to our 2026 Super Users!

Kudos to our 2025 Community Spotlight Honorees

Congratulations to our 2025 community superstars!

Congratulations to the April Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Power Pages

#1
11manish Profile Picture

11manish 42

#2
Valantis Profile Picture

Valantis 24

#3
omkarsupreme Profile Picture

omkarsupreme 23

Last 30 days Overall leaderboard

Featured topics

Solution to LinkedIn Authentication in Power Apps Portals
Welcome to the Power Pages forum!

Product updates

Microsoft Power Platform Community release plans