b2c tenant - automate custom policy under identity experience framework
I am trying to automate b2c tenant custom policy creation under identity experience framework. Go to Azure Portal -> Azure AD B2C -> Policies -> Identity Experience Framework
But mg.graph module is giving pain while importing.
error: Import-Module -Name Microsoft.Graph -Force Import-Module : Function Find-MgTenantRelationshipTenantInformationByDomainName cannot be created because function capacity 4096 has been exceeded for this scope.
Note: I tried this in multiple PCs and ended up with same error.
# Authenticate to Microsoft Graph using client credentials
try {
$secureClientSecret = ConvertTo-SecureString -String $clientSecret -AsPlainText -Force
$credential = New-Object -TypeName Microsoft.Graph.PowerShell.Authentication.Credential
$credential.ClientId = $clientId
$credential.ClientSecret = $secureClientSecret
$credential.TenantId = $tenantName
Connect-MgGraph -Credential $credential -Scopes "Policy.ReadWrite.TrustFramework"
Write-Host "Successfully authenticated to Microsoft Graph."
} catch {
Write-Output "Failed to authenticate to Microsoft Graph, error: $($_.Exception.Message)"
throw
}
# Upload the policy file
try {
$policyName = "SignUpOrSignin-ODP-D2.xml"
$policyContent = Get-Content -Path $outputFilePath -Raw
Write-Host "Uploading policy: $policyName..."
$response = Invoke-MgGraphRequest -Uri "https://graph.microsoft.com/v1.0/trustFramework/policies/$policyName" `
-Method PUT `
-Body $policyContent `
-Headers @{ "Content-Type" = "application/xml" }
if ($response) {
Write-Host "Successfully uploaded policy: $policyName"
} else {
Write-Host "Failed to upload policy: $policyName"
}
} catch {
Write-Output "Failed to upload the policy file, error: $($_.Exception.Message)"
throw
}
I am trying to automate it to use powershell through azuredevops with a single without user interaction.
Thanks Krupa G
Trying to automate b2c tenant custom policy creation under identity experience framework.
The error message you get might because of too many modules are installed in your system or the same module might be called multiple times.
Ensure that your SignUpOrSignIn.xml has PolicyId:
For adding SignUpOrSignIn.xml to Identity Experience Framework.
Use below Modified Powershell Script
# Connect to Microsoft Graph with required permissions
#Import-Module Microsoft.Graph -Force
Connect-MgGraph -Scopes "Policy.ReadWrite.TrustFramework"
# Define policy details
$policyId = "B2C_1A_signup_signin-Demo"
$policyFile = "<YOUR_FILE_PATH\SignUpOrSignin.xml"
$outputFilePath = "<RESPONSE_OUTPUT>\policy-upload-response.xml"
# Verify if the file exists
if (-Not (Test-Path $policyFile)) {
Write-Host "Error: Policy file not found at $policyFile" -ForegroundColor Red
exit
}
# Read policy content
$policyContent = Get-Content -Path $policyFile -Raw
Write-Host "Uploading policy: $policyId.xml"
# Upload the policy to Microsoft Graph
try {
Invoke-MgGraphRequest -Uri "https://graph.microsoft.com/beta/trustFramework/policies/$policyId/`$value" `
-Method PUT `
-Body $policyContent `
-Headers @{ "Content-Type" = "application/xml" } `
-OutputFilePath $outputFilePath # This saves the response
Write-Host "Successfully uploaded policy: $policyId.xml" -ForegroundColor Green
Write-Host "Response saved to: $outputFilePath"
} catch {
Write-Host "Failed to upload policy: $policyId.xml. Error: $($_.Exception.Message)" -ForegroundColor Red
}
Write-Host "Policy upload process completed!"
Response:
Also, I've verified from the portal by Navigating to Azure Portal -> Azure AD B2C -> Policies -> Identity Experience Framework
If still issue persists update the graph modules to latest version using Update-Module Microsoft.Graph and try the same.
Reference:
- Can one use DPO (direct preference optimization) of GPT via CLI or Python on Azure?
- azure function via terraform: how to connect to service bus
- Azure WebJob is failing after some period of time on Linux plan
- Retry policy on blob leasing
- Copying storage data from one Azure account to another
- Windows Azure SDK for Node.js SQL Azure Provider
- Pipeline for stored procedure dedicated sql pool
- Webpack @azure/storage-blob node-fetch AbortSignal issue
- What is the Azure equivalent of GCP's Cloud Run?
- How stop execution of a stored procedure if the client closes the connection in SQL Azure database?
- How do you start parallel instances of 1 durable function via HTTP Post?
- Referencing Azure Key Vault secrets from CI/CD YAML
- Azure Function App (Node.js): deployed functions don’t show up in Portal after remote build
- AKS-extension Deployment failed because used version was not found
- Broken while-loop on evaluation of azure commands in Bash Script
- Semantic Kernel OpenAIAssistantAgent GroupChat InvokeStreamingAsync NullReferenceException in swedencentral
- How to get list of Planner Plans via Microsoft Graph similar to My Plans web page?
- Managed Devops pool quota issue
- Connect-ExchangeOnline -ManagedIdentity -Organization will raise this error " The role assigned to application ** isn't supported in this scenario"
- Azure Container Apps Jobs with Event Hubs integration is looping endlessly, even though there is no new events
- Azure Pipeline to trigger Pipeline using YAML
- Retrieve client id for pipeline service principal in Azure Pipeline
- What is the definitive, exhaustive list of fields searched by the Microsoft Graph API /messages?$search parameter?
- Azure CLI Never Ending task
- ADF file move between two blob containers with an Azure SQL database ingestion
- Azure Load Balancer Inbound NAT rule targeting VM
- Azure App Service can't access Search Service index anymore. What configurations or permission do I need to set?
- How to get the prinicipal_id from azuread_users data source using for each
- Can data azuread_users accept null value?
- How to connect PGAdmin 4 to Postgres DB residing in Azure Virtual Network