You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory-b2c/user-profile-attributes.md
+8-9Lines changed: 8 additions & 9 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -15,7 +15,7 @@ ms.subservice: B2C
15
15
16
16
# User profile attributes
17
17
18
-
Your Azure AD B2C directory user profile comes with a built-in set of attributes, such as given name, surname, city, postal code, and phone number. You can extend the user profile with your own application data without requiring an external data store. Most of the attributes that can be used with Azure AD B2C user profiles are also supported by Microsoft Graph. This article describes supported Azure AD B2C user profile attributes. It also notes those attributes that are not supported by Microsoft Graph, as well as Microsoft Graph attributes that should not be used with Azure AD B2C.
18
+
Your Azure Active Directory (Azure AD) B2C directory user profile comes with a built-in set of attributes, such as given name, surname, city, postal code, and phone number. You can extend the user profile with your own application data without requiring an external data store. Most of the attributes that can be used with Azure AD B2C user profiles are also supported by Microsoft Graph. This article describes supported Azure AD B2C user profile attributes. It also notes those attributes that are not supported by Microsoft Graph, as well as Microsoft Graph attributes that should not be used with Azure AD B2C.
19
19
20
20
> [!IMPORTANT]
21
21
> You should not use built-in or extension attributes to store sensitive personal data, such as account credentials, government identification numbers, cardholder data, financial account data, healthcare information, or sensitive background information.
@@ -56,7 +56,7 @@ The table below lists the [user resource type](https://docs.microsoft.com/graph/
56
56
|mailNickName |String|The mail alias for the user. Max length 64.|No|No|Persisted, Output|
57
57
|mobile (mobilePhone) |String|The primary cellular telephone number for the user. Max length 64.|Yes|No|Persisted, Output|
58
58
|netId |String|Net ID.|No|No|Persisted, Output|
59
-
|objectId |String|A Guid that is the unique identifier for the user. Example: 12345678-9abc-def0-1234-56789abcde. Read only, Immutable.|Read only|Yes|Input, Persisted, Output|
59
+
|objectId |String|A globally unique identifier (GUID) that is the unique identifier for the user. Example: 12345678-9abc-def0-1234-56789abcde. Read only, Immutable.|Read only|Yes|Input, Persisted, Output|
60
60
|otherMails |String collection|A list of additional email addresses for the user. Example: ["[email protected]", "[email protected]"].|Yes (Alternate email)|No|Persisted, Output|
61
61
|password |String|The password for the local account during user creation.|No|No|Persisted|
62
62
|passwordPolicies |String|Policy of the password. It's a string consisting of different policy name separated by comma. i.e. "DisablePasswordExpiration, DisableStrongPassword".|No|No|Persisted, Output|
@@ -93,16 +93,15 @@ You’ll often need to create your own attributes, as in the following cases:
93
93
94
94
Azure AD B2C extends the set of attributes stored on each user account. Extension attributes [extend the schema](https://docs.microsoft.com/graph/extensibility-overview#schema-extensions) of the user objects in the directory. The extension attributes can only be registered on an application object, even though they might contain data for a user. The extension attribute is attached to the application called b2c-extensions-app. Do not modify this application, as it's used by Azure AD B2C for storing user data. You can find this application under Azure Active Directory App registrations.
95
95
96
-
Notes:
97
-
98
-
- Up to 100 extension attributes can be written to any user account.
99
-
- If the b2c-extensions-app application is deleted, those extension attributes are removed from all users along with any data they contain.
100
-
- If an extension attribute is deleted by the application, it's removed from all user accounts and the values are deleted.
101
-
- The underlying name of the extension attribute is generated in the format "Extension_" + Application ID + "_" + Attribute name. For example, if you create an extension attribute LoyaltyNumber, and the b2c-extensions-app Application ID is 831374b3-bd50-41bf-aa54-263ec9e050fc, the underlying extension attribute name will be: extension_831374b3bd5041bfaa54263ec9e050fc_LoyaltyNumber. You use the underlying name when you run Graph API queries to create or update user accounts.
96
+
> [!NOTE]
97
+
> - Up to 100 extension attributes can be written to any user account.
98
+
> - If the b2c-extensions-app application is deleted, those extension attributes are removed from all users along with any data they contain.
99
+
> - If an extension attribute is deleted by the application, it's removed from all user accounts and the values are deleted.
100
+
> - The underlying name of the extension attribute is generated in the format "Extension_" + Application ID + "_" + Attribute name. For example, if you create an extension attribute LoyaltyNumber, and the b2c-extensions-app Application ID is 831374b3-bd50-41bf-aa54-263ec9e050fc, the underlying extension attribute name will be: extension_831374b3bd5041bfaa54263ec9e050fc_LoyaltyNumber. You use the underlying name when you run Graph API queries to create or update user accounts.
102
101
103
102
The following data types are supported when defining a property in a schema extension:
104
103
105
-
|Property Type|Remarks |
104
+
|Property type|Remarks |
106
105
|--------------|---------|
107
106
|Boolean | Possible values: **true** or **false**. |
108
107
|DateTime | Must be specified in ISO 8601 format. Will be stored in UTC. |
0 commit comments