New Entra Custom Authentication Extension | Enable Integration with Any Email Providers

Let’s discuss New Entra Custom Authentication Extension | Enable Integration with any Email Providers. Microsoft introduced New custom authentication extension for external-facing applications. This extensions enables the integration with any Microsoft and non-Microsoft email providers.

Microsoft is dedicated to create provide seamless end-user experiences and establishing end-user trust, and accelerating your business growth. With the New Custom Authentication Extension Microsoft aims to give seamless experiences for both admins and developers.

Entra Custom Authentication Extension avaialble in Public Preview. With this authentication extension you can choose any Microsoft and non-Microsoft email providers of your choice for one time passcode events triggered during sign-up, sign-in and forgot password flows.

In this blog post i will help you to know more about New Entra Custom Authentication Extension | Enable Integration with Any Email Providers. You can try this new feature in Entra and enhance the your authentication experience.

Patch My PC
New Entra Custom Authentication Extension | Enable Integration with Any Email Providers - Fig.1

New Entra Custom Authentication Extension | Enable Integration with Any Email Providers

As i mentioned above new Custom Authentication Extension is available in Public Preview. Microsoft added these customization options based on your feedback that you wanted more control over the experience for your users.

Advantages of Custom OTP Email
Brand Customization
Improved User Experience
Flexibility
Enhanced Security
Scalability
New Entra Custom Authentication Extension | Enable Integration with Any Email Providers – Table.1

Create an API Gateway to the Custom Email Provider

With this authentication you can create an Azure function App. Then, create an HTTP trigger function and update the function default value.

Adaptiva

Configure EmailOtpSend Custom Authentication Extension

On the Microsoft Entra Admin Center you can configure EmailOtpSend custom authentication extension using the custom authentication extensions blade for your Tenant. You can  register a new custom authentication extension, connect it to your application/s and assign a custom email provider to the application/s.

Basic Tab

On the Basic Tab you can you to choose the EmailOtpSend event type. In this window you can see different Event its scenario, and description. Select EmailOtpSend(Preview) as shown in the below screenshot. Then click on the Next button.

New Entra Custom Authentication Extension | Enable Integration with Any Email Providers - Fig.2 - Creds to MS
New Entra Custom Authentication Extension | Enable Integration with Any Email Providers – Fig.2 – Creds to MS

Endpoint Configuration Tab

The Endpoint Configuration Tab helps you to set up your API endpoint. You can add Name, Targer URL, Timeout in milliseconds, Maximum Retries etc. On the Error Handling section you can see options such as Show error and Fallback to Microsoft default email OTP.

  • Choose Show error option
  • Click on the Next button
New Entra Custom Authentication Extension | Enable Integration with Any Email Providers - Fig.3 - Creds to MS
New Entra Custom Authentication Extension | Enable Integration with Any Email Providers – Fig.3 – Creds to MS

API Authentication

API Authentication grants flow to secure the call to your API endpoint. Microsoft Entra ID uses OAuth 2.0 client credentials grant flow to secure the cal to your API endpoint. In this window enable Create new app registration option from App registration type.

  • Click on the Next button
New Entra Custom Authentication Extension | Enable Integration with Any Email Providers - Fig.4 - Creds to MS
New Entra Custom Authentication Extension | Enable Integration with Any Email Providers – Fig.4 – Creds to MS

Application

In this window you can add add application to applies the EmailOtpSend event to the application/s. An application needs to be configured to utilize this event on per app basis. Get started using EmailOtpSend custom authentication extensions by setting up Microsoft Entra External ID tenant.

New Entra Custom Authentication Extension | Enable Integration with Any Email Providers - Fig.5 - Creds to MS
New Entra Custom Authentication Extension | Enable Integration with Any Email Providers – Fig.5 – Creds to MS

Need Further Assistance or Have Technical Questions?

Join the LinkedIn Page and Telegram group to get the latest step-by-step guides and news updates. Join our Meetup Page to participate in User group meetings. Also, Join the WhatsApp Community to get the latest news on Microsoft Technologies. We are there on Reddit as well.

Resource

Enhance end-user experiences with Custom OTP Email Provider Support

Author

Anoop C Nair has been Microsoft MVP from 2015 onwards for 10 consecutive years! He is a Workplace Solution Architect with more than 22+ years of experience in Workplace technologies. He is also a Blogger, Speaker, and Local User Group Community leader. His primary focus is on Device Management technologies like SCCM and Intune. He writes about technologies like Intune, SCCM, Windows, Cloud PC, Windows, Entra, Microsoft Security, Career, etc.

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.