{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 forever°为你锁心 的问题《Hybrid authentication scenario - Azure AD B2C and》','https://www.manongdao.com/q-575852.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I have this scenario where we have to authenticate corporate users via Azure AD, but the external users via Azure AD B2C - all from the same login screen.
There are a few web applications which will share this capability. The applications come from various technology stacks, ranging from .Net to Java-Spring + Angular 2.
What is your recommended approach for this? Apologies, if this question has already been asked and answered, but couldn't find much guidance on this. Will MSAL library solve this? Besides, there aren't any MSAL implementation for Java yet. Will Azure AD B2C Premium support this?
Thanks in advance for your help!
At this time your only option is to implement support for both Azure AD & Azure AD B2C independently in your applications. You must ask the user to select between the two identity providers, and then invoke the correct one.
There are plans to add support for Azure AD org users as an identity provider in Azure AD B2C, at which point two integrations will not be necessary. However that capability isn't in the near future.
I slapped together a bit of guidance on how to support both in a .NET application, perhaps that will get you on the right track: https://github.com/dstrockis/AAD-B2C-Hybrid