B2C实例注册到具有不同策略的不同应用程序 [英] B2C instance registered to different apps with different policies

问题描述

大家好，我希望这是主题的正确论坛... 我想知道这个设计是否可行。 

Hi all, I hope this is the righthe forum for the topic...I'm wondering if this design is possible. 

我们有1个B2C服务，许多应用注册需要标准的用户名和密码。我们有另一个应用程序，我们想要注册并使用相同的身份，但对于这个我们需要MFA。

We have 1 B2C service with many app registrations requiring a standard username and password. We have another app that we want to register and use the same identity, but for this one we need MFA.

因此，如果用户已通过一个应用程序登录，那么他们可以打开另一个应用程序并且已经登录。但如果他们来到这个需要MFA的新应用，那么他们会重定向到MFA登录界面。 

So if a user is already logged in through one app, then they can open another app and be already logged in. But if they come to this new app that needs MFA then they get a redirect to the MFA login screen. 

反之亦然，如果他们已经通过MFA声明了登录，那么他们应该能够导航到需要相同级别的MFA或更低级别的所有其他应用，而无需再次进行身份验证。 

Vice versa, if they already have a logon asserted with MFA, then they should be able to navigate to all other apps that need the same level of MFA or lower without the need to authenticate again. 

此方案是否可行？以及支持它的任何文档？ 

Is this scenario possible? And any documentation that supports it? 

推荐答案

你好SiN_1，

Hi SiN_1,

根据您的查询，您希望使用Azure AD B2C为多个应用程序实现单点登录。

As per your query, you want to implement single sign-on for multiple applications using Azure AD B2C.

请查看以下文档：

https：/ /docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-token-session-sso  &absp; https://docs.microsoft.com/en-us/azure/active-directory-b2c/ active-directory-b2c-reference-sso-custom

https://docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-token-session-sso and https://docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-reference-sso-custom

我希望这会有所帮助。

谢谢。

这篇关于B2C实例注册到具有不同策略的不同应用程序的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！