You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/develop/v2-supported-account-types.md
+7-7Lines changed: 7 additions & 7 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -9,34 +9,34 @@ ms.service: active-directory
9
9
ms.subservice: develop
10
10
ms.topic: conceptual
11
11
ms.workload: identity
12
-
ms.date: 07/14/2020
12
+
ms.date: 02/06/2023
13
13
ms.author: henrymbugua
14
14
ms.reviewer: saeeda, jmprieur
15
15
ms.custom: aaddev, identityplatformtop40
16
16
---
17
17
18
18
# Supported account types
19
19
20
-
This article explains what account types (sometimes called *audiences*) are supported in the Microsoft identity platform applications.
20
+
This article explains what account types (sometimes called _audiences_) are supported in the Microsoft identity platform applications.
21
21
22
22
<!-- This section can be in an include for many of the scenarios (SPA, web app signing-in users, protecting a web API, Desktop (depending on the flows), Mobile -->
23
23
24
24
## Account types in the public cloud
25
25
26
26
In the Microsoft Azure public cloud, most types of apps can sign in users with any audience:
27
27
28
-
- If you're writing a line-of-business (LOB) application, you can sign in users in your own organization. Such an application is sometimes called *single-tenant*.
29
-
- If you're an ISV, you can write an application that signs in users:
28
+
- If you're writing a line-of-business (LOB) application, you can sign in users in your own organization. Such an application is sometimes called _single-tenant_.
29
+
- If you're an independent software vendor (ISV), you can write an application that signs in users:
30
30
31
-
- In any organization. Such an application is called a *multitenant* web application. You'll sometimes read that it signs in users with their work or school accounts.
31
+
- In any organization. Such an application is called a _multitenant_ web application. You'll sometimes read that it signs in users with their work or school accounts.
32
32
- With their work or school or personal Microsoft accounts.
33
33
- With only personal Microsoft accounts.
34
-
34
+
35
35
- If you're writing a business-to-consumer application, you can also sign in users with their social identities, by using Azure Active Directory B2C (Azure AD B2C).
36
36
37
37
## Account type support in authentication flows
38
38
39
-
Some account types can't be used with certain authentication flows. For instance, in desktop, UWP, or daemon applications:
39
+
Some account types can't be used with certain authentication flows. For instance, in desktop, Universal Windows Platform (UWP), or daemon applications:
40
40
41
41
- Daemon applications can be used only with Azure AD organizations. It doesn't make sense to try to use daemon applications to manipulate Microsoft personal accounts. The admin consent will never be granted.
42
42
- You can use the integrated Windows authentication flow only with work or school accounts (in your organization or any organization). Integrated Windows authentication works with domain accounts, and it requires the machines to be domain-joined or Azure AD-joined. This flow doesn't make sense for personal Microsoft accounts.
0 commit comments