You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Azure Active Directory B2C (Azure AD B2C) has two methods to define users interaction with applications: predefined user flows, or configurable custom policies. See, [User flows and custom policies overview](./user-flow-overview.md)
21
22
22
-
In this sample article, we provide guidance on how to integrate Azure Active Directory B2C (Azure AD B2C) authentication with [eID-Me](https://bluink.ca). eID-Me is an identity verification and decentralized digital identity solution for Canadian citizens. With eID-Me, Azure AD B2C tenants can strongly verify the identity of their users, obtain verified identity claims during sign up and sign in, and support multifactor authentication (MFA) and password-free sign-in using a secure digital identity. It enables organizations to meet Identity Assurance Level (IAL) 2 and Know Your Customer (KYC) requirements. This solution provides users secure sign-up and sign in experience while reducing fraud.
23
+
## Integrate Azure AD B2C authentication with eID-Me
23
24
25
+
Learn to integrate Azure AD B2C authentication with Bluink eID-Me, an identity verification and decentralized digital identity solution for Canadian citizens. With eID-Me, Azure AD B2C tenants verify user identity, obtain verified sign-up and sign-in identity claims. Integration supports multi-factor authentication and passwordless sign-in with a secure digital identity. Organizations can meet Identity Assurance Level (IAL) 2 and Know Your Customer (KYC) requirements.
24
26
27
+
To learn more, go to bluink.ca: [Bluink Ltd](https://bluink.ca)
25
28
26
29
## Prerequisites
27
30
28
-
To get started, you'll need:
31
+
To get started, you need:
29
32
30
-
-[A Relying Party account with eID-Me](https://bluink.ca/eid-me/solutions/id-verification#contact-form).
33
+
* A Relying Party account with eID-Me
34
+
* Go to bluink.ca to [learn more](https://bluink.ca/eid-me/solutions/id-verification#contact-form) and request a demo
35
+
* An Azure subscription
36
+
* If you don't have one, get an [Azure free account](https://azure.microsoft.com/free)
37
+
* An Azure AD B2C tenant linked to thke Azure subscription
38
+
* See, [Tutorial: Create an Azure Active Directory B2C tenant](tutorial-create-tenant.md)
39
+
* A trial or production version of the eID-Me Digital ID App
40
+
* Go to bluink.ca to [Download the eID-Me Digital ID App](https://bluink.ca/eid-me/download)
31
41
32
-
- An Azure subscription. If you don't have one, get a [free
33
-
account](https://azure.microsoft.com/free).
42
+
See also, [Tutorial: Create user flows and custom policies in Azure AD B2C](./tutorial-create-user-flows.md?pivots=b2c-custom-policy).
34
43
35
-
- An [Azure AD B2C tenant](tutorial-create-tenant.md) that is linked to your Azure subscription.
36
-
37
-
- A [trial or production version](https://bluink.ca/eid-me/download) of eID-Me smartphone apps for users.
38
-
39
-
::: zone pivot="b2c-custom-policy"
40
-
- Complete the steps in the article [get started with custom policies in Azure Active Directory B2C](./tutorial-create-user-flows.md?pivots=b2c-custom-policy).
41
-
42
-
::: zone-end
43
44
44
45
## Scenario description
45
46
46
47
eID-Me integrates with Azure AD B2C as an OpenID Connect (OIDC) identity provider. The following components comprise the eID-Me solution with Azure AD B2C:
47
48
48
-
49
-
-**An Azure AD B2C tenant**: Your Azure AD B2C tenant need be configured as a Relying Party in eID-Me. This allows the eID-Me identity provider to trust your Azure AD B2C tenant for sign up and sign in.
50
-
51
-
52
-
-**An Azure AD B2C tenant application**: Although not strictly required, it's assumed that tenants need to have an Azure AD B2C tenant application. The application can receive identity claims received by Azure AD B2C during an eID-Me transaction.
53
-
54
-
55
-
-**eID-Me smartphone apps**: Users of your Azure AD B2C tenant need to have the eID-Me smartphone app for iOS or Android.
56
-
57
-
58
-
-**Issued eID-Me digital identities**: Before using eID-Me, users need to successfully go through the eID-Me identity proofing process. They need to have been issued a digital identity to the digital wallet within the app. This process is done from home and usually takes minutes provided the users have valid identity documents.
59
-
49
+
***An Azure AD B2C tenant**: Your Azure AD B2C tenant need be configured as a Relying Party in eID-Me. This allows the eID-Me identity provider to trust your Azure AD B2C tenant for sign up and sign in.
50
+
***An Azure AD B2C tenant application**: Although not strictly required, it's assumed that tenants need to have an Azure AD B2C tenant application. The application can receive identity claims received by Azure AD B2C during an eID-Me transaction.
51
+
***eID-Me smartphone apps**: Users of your Azure AD B2C tenant need to have the eID-Me smartphone app for iOS or Android.
52
+
***Issued eID-Me digital identities**: Before using eID-Me, users need to successfully go through the eID-Me identity proofing process. They need to have been issued a digital identity to the digital wallet within the app. This process is done from home and usually takes minutes provided the users have valid identity documents.
60
53
61
54
The eID-Me apps also provide strong authentication of the user during any transaction. X509 public key authentication using a private signing key contained within the eID-Me digital identity provides passwordless MFA.
0 commit comments