Long time quiet thread, but I recently got it working with the help of a set of excellent scripts : Follow these steps https://github.com/cljung/AzureAD-B2C-scripts Then we need to get the groups for splunk, which is implemented with a function described in this; https://github.com/cljung/B2C-devdiv/tree/main/4-groups I all is working, you'll have the testsite jwt.ms up and displaying claims. Then theres a bit of work to convert JWT to SAML, which is described here https://docs.microsoft.com/en-us/azure/active-directory-b2c/connect-with-saml-service-providers?tabs=windows In addition, there may be some smal tweaks in the policy to get the right claims. I also noted that the metadata endpoint of splunk isnt available unless you sign on, so I uploaded it to av azure blob website and referenced in the app-registration.. brgds Kristen
... View more