You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory-b2c/partner-cloudflare.md
+10-8Lines changed: 10 additions & 8 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -7,7 +7,7 @@ manager: martinco
7
7
ms.reviewer: kengaderdus
8
8
ms.service: azure-active-directory
9
9
ms.topic: how-to
10
-
ms.date: 01/26/2024
10
+
ms.date: 06/30/2025
11
11
ms.author: gasinh
12
12
ms.subservice: b2c
13
13
@@ -21,20 +21,19 @@ In this article, you can learn how to configure the [Cloudflare Web Application
21
21
22
22
## Prerequisites
23
23
24
-
To get started, you'll need:
24
+
To get started, you need:
25
25
26
-
- An Azure subscription
27
-
- If you don't have one, you can get an [Azure free account](https://azure.microsoft.com/free/)
28
-
-[An Azure AD B2C tenant](tutorial-create-tenant.md) linked to your Azure subscription
29
-
- A [Cloudflare](https://dash.cloudflare.com/sign-up) account
26
+
- An Azure subscription. If you don't have one, you can get an [Azure free account](https://azure.microsoft.com/free/).
27
+
-[An Azure AD B2C tenant](tutorial-create-tenant.md) linked to your Azure subscription.
28
+
- A [Cloudflare](https://dash.cloudflare.com/sign-up) account.
30
29
31
30
## Scenario description
32
31
33
32
Cloudflare WAF integration includes the following components:
34
33
35
-
-**Azure AD B2C tenant** – The authorization server that verifies user credentials using the custom policies defined in the tenant. It's known as the identity provider
34
+
-**Azure AD B2C tenant** – The authorization server that verifies user credentials using the custom policies defined in the tenant, known as the identity provider.
36
35
-[**Azure Front Door**](../frontdoor/front-door-overview.md) – Enables custom domains for Azure B2C tenant. Traffic from Cloudflare WAF is routed to Azure Front Door before arriving at Azure AD B2C tenant.
37
-
-**Cloudflare** – The web application firewall that manages traffic sent to the authorization server
36
+
-**Cloudflare** – The web application firewall that manages traffic sent to the authorization server.
38
37
39
38
## Integrate with Azure AD B2C
40
39
@@ -58,6 +57,9 @@ The settings appear in the following image.
58
57
59
58
60
59
60
+
> [!NOTE]
61
+
> Azure Front Door-managed certificates aren't automatically renewed if your custom domain’s CNAME record points to a DNS record other than the Azure Front Door endpoint’s domain (for example, when using a third-party DNS service like Cloudflare). To renew the certificate in such cases, follow the instructions in the [Renew Azure Front Door-managed certificates](../frontdoor/domain.md#renew-azure-front-door-managed-certificates) article.
62
+
61
63
### Configure the Web Application Firewall
62
64
63
65
Go to your Cloudflare settings, and use the Cloudflare content to [configure the WAF](https://www.cloudflare.com/application-services/products/waf/) and learn about other security tools.
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments