Enterprise Mobility and Security Blog

RSS

Hi everyone,

Happy Build week!

Every team in the Identity Division is focusing more than ever on making developers successful on our identity platform, so we’re really excited to share today’s news: Azure Active Directory B2C enhancements and the new Microsoft Authentication Libraries (MSAL), both available in preview.

Azure Active Directory B2C: Super simple or as customized as you need!

Since its general availability in July 2016, Azure AD B2C has helped organizations around the world connect with millions of customers through its scalability, reliability, and flexibility. Driven by your feedback, we’ve added several new capabilities over the last 10 months: Support for App Service, Access tokens, Single-page app (SPA) support, Usage reporting APIs, Friction-free consumer sign-up.

Last month we made the service globally available and also offered organizations the option to choose datacenter location in either Europe or the US only, to help with data protection regulations. Today we are providing even more flexibility by adding support for 37 languages and enabling two different configuration options:

  • Simple: The standard, out-of-the-box option that requires minimal or no code will still be available for those projects that are straightforward and don’t require customization.
  • Custom: For more demanding sign-up and sign-in scenarios, Azure Active Directory B2C will expose the power of the core engine of Azure Active Directory platform for a fully customizable user experience.

This new custom configuration option, which is currently in public preview, lets developers:

  • Integrate with existing user databases of customers/citizens/employees, CRM systems, and marketing analytics tools
  • Define user journeys step-by-step as exchanges between claims providers
  • Define conditional branching in user journeys
  • Integrate REST API-enabled services in custom authentication user journeys
  • Enable federation with identity providers compliant with the OpenID Connect standard.
  • Enable federation with identity providers adhering to the SAML 2.0 protocol

We hope you find these new features as critical to your business as the team from the State of Indiana did:

“Having the ability to do everything as efficiently as possible helps make Indiana a great state to live in and do business [in]. We’re one of the more business-friendly states in the Midwest, and INBiz with Azure AD B2C ensures that we can strengthen that position.”

Jim Obermaier, Program Manager for INBiz, Indiana Secretary of State

Visit the Azure AD B2C website for more details.

Azure Active Directory and Microsoft Accounts: New public preview libraries

We are also announcing the new Microsoft Authentication Library (MSAL) for JavaScript, iOS, and Android, as well as updates to the already-available MSAL preview for .Net. Using the new protocol endpoint of Azure Active Directory, MSAL enables developers to build web, mobile, and PC applications that allow users to sign in from both Microsoft personal accounts and Azure Active Directory work and school accounts, as well as get access tokens to call the Microsoft Graph. MSAL is also the library to use if you are building apps with Azure AD B2C.

We have heard your feedback that integrating with Azure Active Directory and Microsoft Accounts needs to be really simple. We are pleased to announce our new interactive guided walkthroughs for apps looking to integrate with the MSAL libraries for .Net and Android.  To try these guided walkthroughs, go to the Application Registration Portal and click “add an app”. Additional guided walkthroughs are coming soon.

MSAL is the successor to the Active Directory Authentication Library (ADAL), which will remain fully supported while MSAL is in preview. Please read this blog post by Vittorio Bertocci for more details.

The identity team is also working on Microsoft Graph. I suggest you read this blog to learn what’s new for Office on Microsoft Graph.

Come talk to us at Microsoft Build 2017

If you’re attending Microsoft Build 2017 this week in Seattle, do join us at the Azure Active Directory booth in the expo area, or come to our sessions where we’ll be sharing more detail on these exciting new capabilities:

  • The keys to the cloud: Use Microsoft identities to sign in and access API from your mobile and web apps by Vittorio Bertocci(T4CD93)
  • Securely sign-in your customers with Azure Active Directory B2C by Gerardo Saca (TD0863)
  • Azure Active Directory v2 endpoint and MSAL: What’s new by Stuart Kwan (prerecorded session TCC1AF)
  • Microsoft Graph: Build better apps with the API to your organization by Yina Arenas (T485A8)
  • Add custom data to Microsoft Graph by Dan Kershaw (prerecorded session T8A08C)
  • Build end-to-end solutions across the Common Data Service, Microsoft Dynamics 365, and Office 365 by Chris Garty and Suresh Jayabalan  (prerecorded session TB95B4)
  • Microsoft Graph delta query and webhooks by Jeff Sakowicz (prerecorded session T838C7)
  • Using Microsoft Graph to connect to Office 365 data by Yina Arenas (T2F889)

Stay on top of news and announcements by following us on Twitter, and visit our new Azure AD for developers’ website.

We hope you try out these new features and, as always, look forward for your feedback and suggestions!

John Justice

Director of Program Management

Microsoft Identity Developer Platform