Azure ad b2c as external identity provider for salesforce community: After implementing the steps mentioned in the document still we are facing the issues. can any one help on this from microsoft side?

[Tinus-schwalyk]

---

Document Details

⚠ Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.

• ID: 821b1380-1072-7ab4-b8d7-0fcb993d68be
• Version Independent ID: 93c75bbd-e3e3-67c2-3554-e88fde4e83b3
• Content: Set up sign-in with a Salesforce SAML provider by using custom policies - Azure AD B2C
• Content Source: articles/active-directory-b2c/active-directory-b2c-setup-sf-app-custom.md
• Service: active-directory
• Sub-service: b2c
• GitHub Login: @mmacy
• Microsoft Alias: marsma

[Tinus-schwalyk]

The user is present in the azure ad b2c and salesforce community profiles. But still its throwing an error as mentioned below.

[Tinus-schwalyk]

Is this supported scenario or not? If its supported can anyone from microsoft update the documnet with the saleforce example? You have given the documnetation for the facebook.

So many customers from salesforce are facing the same issue and they stopped using the Azure ad b2c which is drawback from microsoft documentation which is not clearly given. Please tell honestly if it not supported and mention in the document.

Microsoft has updated the documnetation for few products which is appeciated. but still there are so many drawbacks due to lack of documnetation

[Tinus-schwalyk]

Any help on this?

[Mike-Ubezzi-MSFT]

@Tinus-schwalyk Thank you for bringing this to our attention. Can you please reference the documentation within the MicrosoftDocs repository that discusses this integration?

[JasSuri]

The screenshot would pertain to a login issue against SalesForce itself, rather than something to do with B2C. Have you checked that the URL you are authenticating to at SalesForce is the expected tenant? Make sure this is correct in the B2C policy:

 <Item Key="PartnerEntity">https://contoso-dev-ed.my.salesforce.com/.well-known/samlidp.xml</Item>

[Tinus-schwalyk]

@JasSuri, I have given the partner entity url correct as per the documentation. Is the local accounts from azure ad b2c are supported to authenticate against salesforce?

[JasSuri]

No, since those accounts don't exist in SalesForce. Only accounts that exist in SalesForce would be able to login at the page in your screenshot.

[mmacy]

Closing this one out as answered, @Tinus-schwalyk. If you feel it's been closed prematurely, please don't hesitate to comment further on this issue.

please-close