Transforming businesses with cloud technology.

Where we are

Melbourne - 534 Church St, Richmond VIC 3121
Sydney
Brisbane
Adelaide
Perth

Azure AD - Self-service Sign-Up

Cloud Application

When sharing an application with external users, you might not always know in advance who will need access to the application. As an alternative to sending invitations directly to individuals, you can allow external users to sign up for specific applications themselves by enabling self-service sign-up. You can create a personalized sign-up experience by customizing the self-service sign-up user flow. For example, you can provide options to sign up with Azure AD or social identity providers and collect information about the user during the sign-up process.

Note: You can associate user flows with apps built by your organization. User flows can't be used for Microsoft apps, like SharePoint or Teams.

User flow for self-service sign-up

A self-service sign-up user flow creates a sign-up experience for your external users through the application you want to share. The user flow can be associated with one or more of your applications. First you'll enable self-service sign-up for your tenant and federate with the identity providers you want to allow external users to use for sign-in. Then you'll create and customize the sign-up user flow and assign your applications to it. You can configure user flow settings to control how the user signs up for the application:

  • Account types used for sign-in, such as social accounts like Facebook, or Azure AD accounts
  • Attributes to be collected from the user signing up, such as first name, postal code, or country/region of residency

When a user wants to sign in to your application, whether it's a web, mobile, desktop, or single-page application (SPA), the application initiates an authorization request to the user flow-provided endpoint. The user flow defines and controls the user's experience. When the user completes the sign-up user flow, Azure AD generates a token and redirects the user back to your application. Upon completion of sign-up, a guest account is provisioned for the user in the directory. Multiple applications can use the same user flow.

Example of self-service sign-up

The following example illustrates how we're bringing social identity providers to Azure AD with self-service sign up capabilities for guest users.

A partner of Woodgrove opens the Woodgrove app. They decide they want to sign up for a supplier account, so they select Request your supplier account, which initiates the self-service sign-up flow.

Example of self-service sign-up starting page

They use the email of their choice to sign up.

Example showing selection of Facebook for sign-in

Azure AD creates a relationship with Woodgrove using the partner's Facebook account, and creates a new guest account for the user after they sign up.

Woodgrove wants to know more about the user, like name, business name, business registration code, phone number.

Example showing user sign-up attributes

The user enters the information, continues the sign-up flow, and gets access to the resources they need.

Example showing the user signed in


Test it out today with a POC
Woodgrove (woodgroveb2cdemo.azurewebsites.net)

Nest Step
Add a self-service sign-up user flow - Azure AD | Microsoft Docs

Learn More

Microsoft Azure Active Directory B2C

Need help, let's talk!

Click Here, to Schedule a Free Consultation Or fill in the form below for a callback.

Thinking of hiring us?

Start Here