cancel
Showing results for 
Search instead for 
Did you mean: 

Using PowerApps licenses from federated B2C Tenants

We would like to be able to use Azure B2C as a component within Canvas Apps in order to:

  1. Authenticate and Invite Guest users that do not have an Azure Active Directory account
  2. To assign licenses to users without Azure Active Directory account
  3. To import licenses from users that are coming from a federated AAD within Azure Active Directory B2C.

 

This scenario is desired in order to provide to users without enterprise capabilities Power Apps within an enterprise context as a PowerApp ISV.

 

Within this scenario Azure AD B2C is acting as an Azure Active Directory B2B extension and would allow Azure Active Directory direct federation scenario for external users.

 

Source for:

B2C federated accounts over custom policies:

https://docs.microsoft.com/en-us/azure/active-directory-b2c/custom-policy-overview

AAD direct federation:

https://docs.microsoft.com/en-us/azure/active-directory/b2b/direct-federation

 

Use Case 1 (Invitation of users without own AAD):

  1. Jane@Contoso.com has created an app within the Contoso tenant using B2C as identity provider.
  2. John@gmail.com gets an Azure AD B2C invite for using Janes application.
  3. John@gmail.com confirms the invitation and Johns account is created within the Contoso Azure AD B2C Tenant.
  4. John@gmail.com is now able to access the Canvas App of Jane
  5. Contoso assigned automatically a PowerApp license to John and is able to monitor his usage

 

Use Case 2 (Invitation of users with AAD and own license):

  1. Jane@Contoso.com has created an app within the Contoso tenant using B2C as identity provider.
  2. John@fabrikam.com gets an Azure AD B2C invite for using Janes application.
  3. John@fabrikam.com confirms the invitation and Johns account is created within the Contoso Azure AD B2C Tenant and since Johns AAD is utilizing a federated AAD policy within the Contoso AAD B2C his license is as well migrated to the Contoso Tenant.
  4. John@fabrikam.com is now able to access the Canvas App of Jane within the Contoso tenant and John can use his Fabrikam Power App license.
Status: New
Comments
Regular Visitor

This is an important topic going forward for Power Platform and Azure B2C (as well as B2B). The true potential of Power Platform is not reached until its solutions can be fully shared with partners and public in a secure and implicitly licenced manner (licence portability when applicable). The B2B and B2C capabilities have emerged as a sensible approach to this that ensures everyone's needs are met. If these teams in MS can get together you will opening almost unlimited opportunities for collaboration, innovation and monetisation. Nuff said.