Great cloud solution for companies already using other MS Azure services.
We use Azure AD B2C solution for one of our clients who need to authenticate end users to their mobile application and support their …
Azure Active Directory External Identities
Azure Active Directory External Identities
Azure Active Directory External Identities
Starting at $0 per month per active users
View PricingOverview
What is Azure Active Directory External Identities?
Azure Active Directory B2C (alternately, Azure Active Directory External Identities) provides business-to-customer identity as a service. Customers can use their preferred social, enterprise, or local account identities to get single sign-on access to applications and APIs.
Read moreRecent Reviews
Reviewer Pros & Cons
View all pros & consVideo Reviews
Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of Azure Active Directory External Identities, and make your voice heard!
Pricing
View all pricingPremium P1 (for More than 50,000 MAU)
$0.00325
Cloud
per month per active users
Premium P2 (for More than 50,000 MAU)
$0.01625
Cloud
per month per active users
Entry-level set up fee?
- No setup fee
For the latest information on pricing, visithttps://azure.microsoft.com/en…
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting / Integration Services
Product Details
- About
- Tech Details
What is Azure Active Directory External Identities?
Azure AD B2C (or Azure Active Directory External Identities) is a customer identity access management (CIAM) solution
The solution is capable of supporting millions of users and billions of authentications per day. It takes care of the scaling and safety of the authentication platform, monitoring, and automatically handling threats like denial-of-service, password spray, or brute force attacks. Azure AD B2C is a separate service from Azure Active Directory (Azure AD). It is built on the same technology as Azure AD but for a different purpose. It allows businesses to build customer facing applications, and then allow anyone to sign up into those applications with no restrictions on user account.
The solution is capable of supporting millions of users and billions of authentications per day. It takes care of the scaling and safety of the authentication platform, monitoring, and automatically handling threats like denial-of-service, password spray, or brute force attacks. Azure AD B2C is a separate service from Azure Active Directory (Azure AD). It is built on the same technology as Azure AD but for a different purpose. It allows businesses to build customer facing applications, and then allow anyone to sign up into those applications with no restrictions on user account.
Who uses Azure AD B2C?
Any business or individual who wishes to authenticate end users to their web/mobile applications using a white-label authentication solution. Apart from authentication, Azure AD B2C service is used for authorization such as access to API resources by authenticated users. Azure AD B2C is meant to be used by IT administrators and developers.
Custom-branded identity solution
Azure AD B2C is a white-label authentication solution. The user experience can be customized with a brand so that it blends with web and mobile applications. Pages displayed by Azure AD B2C when users sign up, sign in, and modify their profile information can also be customized. Customize the HTML, CSS, and JavaScript in user journeys so that the Azure AD B2C experience looks and feels like it's a native part of the application.
Single sign-on access with a user-provided identity
Azure AD B2C uses standards-based authentication protocols including OpenID Connect, OAuth 2.0, and Security Assertion Markup Language (SAML). It integrates with most modern applications and commercial off-the-shelf software.
Integrate with external user stores
Azure AD B2C provides a directory that can hold 100 custom attributes per user. However, the solution can be integrated with external systems. For example, use Azure AD B2C for authentication, but delegate to an external customer relationship management (CRM) or customer loyalty database as the source of truth for customer data.
Single sign-on access with a user-provided identity
Azure AD B2C uses standards-based authentication protocols including OpenID Connect, OAuth 2.0, and Security Assertion Markup Language (SAML). It integrates with most modern applications and commercial off-the-shelf software.
Integrate with external user stores
Azure AD B2C provides a directory that can hold 100 custom attributes per user. However, the solution can be integrated with external systems. For example, use Azure AD B2C for authentication, but delegate to an external customer relationship management (CRM) or customer loyalty database as the source of truth for customer data.
Another external user store scenario is to have Azure AD B2C handle the authentication for an application, but integrate with an external system that stores user profile or personal data. For example, to satisfy data residency requirements like regional or on-premises data storage policies. However, Azure AD B2C service itself is worldwide via the Azure public cloud.
Progressive profiling
Another user journey option includes progressive profiling. Progressive profiling allows customers to coomplete their first transaction by collecting a minimal amount of information. Then, gradually collect more profile data from the customer on future sign-ins.
Third-party identity verification and proofing
Azure AD B2C can be used to facilitate identity verification and proofing by collecting user data, then passing it to a third-party system to perform validation, trust scoring, and approval for user account creation.
Azure Active Directory External Identities Technical Details
| Deployment Types | Software as a Service (SaaS), Cloud, or Web-Based |
|---|---|
| Operating Systems | Unspecified |
| Mobile Application | No |
Comparisons
View all alternativesCompare with
Reviews and Ratings
 (50)
Reviews
(1-5 of 5)- Popular Filters
Companies can't remove reviews or game the system. Here's why
We use Azure AD B2C solution for one of our clients who need to authenticate end users to their mobile application and support their backbone as IT admins. It helped us to address and facilitate identity verification by gathering user data. Moreover, the progressive profiling feature helped their customers to complete their first transaction quickly and efficiently.
- Single sign-on access with a user-provided identity.
- Progressive profiling.
- Authenticate individual customers.
- Confusing pricing.
- Complexity.
- Interface
- Seamless and easy integration with other Microsoft platforms.
- Being a cloud based solution.
- Strong authentication for clients using their preferred identity provider.
- Having monthly active users billing was cost-effective.
- Helped with the IT support that was already managing the Azure platform of the company; this helped to manage the costs better and optimize them.
October 04, 2022
Scalable and easy to implement solution with great visibility
Score 7 out of 10
Vetted Review
Verified User
We use the Azure Active Directory B2C service to authorize access to our own custom web applications via API access. It is mainly used for authentication, control and monitoring of external users such as developers, and also for security reasons to defend against, for example, Denial of service, password hashing or brute force attacks.
- authentication
- authorization
- monitoring access
- Azure AD Application Proxy
- inability to nest groups
- no customized emails
- security
- user control
- monitoring access
- less vulnerable
- better security
- bigger overall control
September 21, 2022
Azure Active Directory B2C greatly connects with its peoples world
It help us to keep track of our teams groups and manage the user roles very easily. This also makes it easy to manage our sign in's with a nice overview chart of your monthly activity. There are a lot of apps and add-ins that work with this service. It works well with Microsoft Dynamics. There are a lot of tutorials that walk you through setting up and using this product. It's really a great turn-key system that is very secure and user friendly.
- Single sign-on simplifies access to your apps from anywhere
- Strong authentication for your customers using their preferred identity provider.
- Integrating with social accounts such as Facebook or Google+
- The Cost, This service is available on a pay-as-you-go (PAYG) basis.
- Customization features
- scopes to gather more information about consumers from various social identity providers
- Ability of Azure AD B2C to work with CRM systems such as Microsoft Dynamics
- Option to localize the UI pages and multi language support
- Good/Positive impact
- increases productivity
- Helps to maintain security and traffic of the users
I really enjoy how simple it is to connect this Active Directory with other Microsoft Products to collaborate with colleagues and clients.
September 14, 2022
Cloud based - Business to Consumer
Azure Active Directory B2C allows users to sign into parts of our systems using multifactor authentication while still accessing the parts that do not need the added protection. The predefined user flows help create user experiences and access quickly, while the custom policies are for a more robust scenario. Both are unique and tailored to our needs.
- User flows
- MFA
- User interface
- Custom policies options
- integrating
- One stop shop
- Easy access
- multiple options
- Stronger security
- Conditional Access
Each one of these alternatives has pros and cons. PingOne from Ping Identity states they "help deliver the secure and seamless customer experience to win battles for customer acquisition, retention, revenue, loyalty, and trust." While that may be the case, they did not fit our needs. We have a complex system and it did not seem to fit into our business.
February 25, 2022
Awesome product, lousy marketing -- it's Azure's best-kept secret!
Azure Active Directory B2C is our go-to platform for customer identity and access management (CIAM) needs, both for our internally-developed applications and products as well as for our clients' customer-facing applications. Despite the name, Azure Active Directory B2C excels at both business-to-consumer and business-to-business ("B2B") functionality; I often explain to people that "B2C" should be read as "business-to-customer." We have used Azure Active Directory B2C for everything from prototype apps and small business scenarios to very large enterprises with millions of user accounts.
- Customer identity
- User experience customization
- Integration and configuration
- Security
- Availability/reliability
- Troubleshooting diagnostic logs effectively requires VS Code
- Group and role management requires additional effort
- The programming model (XML) could use some developer experience love
- Configurability
- Integration with Azure
- Value
- Security
- Reliability
- Time to market for our products significantly reduced
- Optimized our total cost of ownership for providing subscription SaaS solutions
- Streamlined maintainability of solutions
- AuthX, The Okta Identity Cloud and AWS Identity & Access Management
The best selling points for Azure Active Directory B2C that stand out from the competition are:
- Pricing, both at small and very large scale (and in between), is hard to beat
- The seamless integration with Azure should make Azure Active Directory B2C the first choice of CIAM platform for anyone building on Azure
- Full compatibility with Azure AD's audit log format means Azure Active Directory B2C can be easily integrated into your SIEM tooling