Skip to main content

Notifications

Announcements

Join us in the Community for an AMA: December 12th Register Today
News and Announcements icon
Dynamics 365 Community / Forums / Microsoft Dynamics CRM (Archived) / Authenticating / Regis...
Microsoft Dynamics CRM (Archived)

Authenticating / Register Portal users using Azure AD

(0) ShareShare
ReportReport
Posted on by Teddyable 155

Hello CRMers,

Have a requirement to authenticate portal users through Azure AD, but Azure AD only signs up users with existing Windows account.

My question is there a way to register users without a Windows credentials to first register before authenticating them?

This is for CRM Portal 8.1

*This post is locked for comments

  • Teddyable Profile Picture
    Teddyable 155 on at
    RE: Authenticating / Register Portal users using Azure AD

    Thank you Colin for your feedbacks

  • Suggested answer
    Colin V Profile Picture
    Colin V on at
    RE: Authenticating / Register Portal users using Azure AD

    I think you want to setup a request an account type process.  Intake desired usernames and email addresses.  Have whatever process on the back-end to create an Azure AD account.  Create a CRM contact, create a portal invite and in the notification with the invite link to the user include the new Azure AD account they should redeem it with.

  • Teddyable Profile Picture
    Teddyable 155 on at
    RE: Authenticating / Register Portal users using Azure AD

    Thanks you Colin,

    Sorry (i'm not an Identity/authentication guy )how would i achieve a signup in this instance?

    So use an API to register users is this only done using graph? or can i use another method? like direct users to create a live account for example.. then vet the authentication/registration before giving users access to the portal?

    This way instead of allowing anyone to create a domain account it will be vetted(the process of how will be a business or technical decision  but want to get this details clearer first)

  • Suggested answer
    Colin V Profile Picture
    Colin V on at
    RE: Authenticating / Register Portal users using Azure AD

    Azure AD doesn't allow for self service user creation.  It could be done using the Graph API though, you would have to likely intake a request and use a plugin to do the Graph API call potentially even another API to broker that.  With Azure AD it is not really intended to be used with self service creation as you are allowing anyone to create domain accounts.

    You might want to look at Azure AD B2C as it is focused on the "external" scenario, allows for self service creation as what they call local accounts using any verified email address.  It uses Azure AD behind the scenes, and supports social identities as well.  Azure B2C though I have yet to try with 8.1 and it might not work as the B2C service uses a different claim for the unique identifier the portal might be expecting.  With v7 you would be able to customize to get this to work.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Join us in the Community for an AMA: December 12th Register Today

Quick Links

December Spotlight Star - Muhammad Affan

Congratulations to a top community star!

Top 10 leaders for November!

Congratulations to our November super stars!

Community AMA December 12th

Join us as we continue to demystify the Dynamics 365 Contact Center

Leaderboard

#1
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 291,240 Super User 2024 Season 2

#2
Martin Dráb Profile Picture

Martin Dráb 230,149 Most Valuable Professional

#3
nmaenpaa Profile Picture

nmaenpaa 101,156

Leaderboard

Featured topics

Product updates

Dynamics 365 release plans