You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory-b2c/partner-nok-nok.md
+19-3Lines changed: 19 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -52,9 +52,11 @@ The following diagram illustrates the Nok Nok solution as an IdP for Azure AD B2
52
52
### Scenario 2: Passkey authentication
53
53
1. The user selects the sign-in with Nok Nok Cloud button on the Azure AD B2C sign-in page.
54
54
2. Azure AD B2C redirects the user to the Nok Nok sign-in app.
55
-
3. The user authenticates with their passkey.
56
-
4. The Nok Nok server validates the passkey assertion and sends an OIDC authentication response to Azure AD B2C.
57
-
5. Based on the authentication result, Azure AD B2C either grants or denies access to the target application.
55
+
3. The user requests passkey authentication
56
+
4. The user authenticates with their passkey.
57
+
5. The Nok Nok Cloud validates the passkey assertion
58
+
6. The Nok Nok Cloud sends an OIDC authentication response to Azure AD B2C.
59
+
7. Based on the authentication result, Azure AD B2C either grants or denies access to the target application.
58
60
59
61
## Get started with Nok Nok
60
62
@@ -125,6 +127,20 @@ For the following instructions, Nok Nok is a new OIDC IdP in the B2C identity pr
125
127
126
128
If the flow is incomplete, confirm the user is or isn't saved in the directory.
127
129
130
+
## Alternate Flow
131
+
132
+
The following diagram illustrates an alternate passkey sign in or sign up flow using the id_token_hint feature of Azure AD B2C. With this approach, an Azure custom policy verifies the ID Token Hint produced by Nok Nok Cloud. For more details, please refer to the article, [Define an ID token hint technical profile in an Azure Active Directory B2C custom policy](https://learn.microsoft.com/en-us/azure/active-directory-b2c/id-token-hint). Please contact Nok Nok support for help with integrated the required Azure custom policy.
133
+
134
+
The following are the steps
135
+
1. The user selects the sign-in with Nok Nok Cloud button.
136
+
2. The Nok Nok Cloud request passkey authentication.
137
+
3. The user authenticates with their passkey.
138
+
4. The Nok Nok Cloud validates the passkey assertion
139
+
5. The ID Token Hint is returned
140
+
6. The App sends the ID Token Hint to Azure AD B2C
141
+
7. Azure Custom Policy verifies the ID Token Hint
142
+
8. Based on the authentication result, Azure AD B2C either grants or denies access to the target application.
143
+
128
144
## Next steps
129
145
130
146
*[Azure AD B2C custom policy overview](./custom-policy-overview.md)
0 commit comments