ThirdSpace ThirdSpace
ThirdSpace Contact Us
Close 0 Reset Search Run Search What are you looking for? Type at least three characters to search. Filter Search Results
  • All Content
  • Blog
  • Page
  • Case Studies
  • Event
  • Resources
  • News
  • Careers
  • Access Centre
  • Technologies
  • Workshops
  • Service
  • Solutions
  • People
Load more
06 December 2016

How to avoid ‘security fatigue’ with Azure AD B2C

Profile shot of Jamie Vaughan.
Written by Jamie Vaughan

A recent NIST Study has found that users are experiencing 'security fatigue'.

Security fatigue is caused by users having to remember yet another password, register for yet another online service, or being told they must do (or not do) something related to IT security. The impact is poor security, which leads to cyber-attacks and lost business.

Even if it costs more, it’s often easier to buy something from an online retailer that we’ve already registered with, simply because it means we won’t have to register for another shopping cart with yet another new password. Businesses are losing customers because of this kind of fatigue.

The average person has 22 different passwords to remember

Sharing passwords between services weakens a user’s online security and risks exposure to hackers. If your password is stolen from one site, it can be used on another. At the time of writing, there are currently 1.8 billion usernames and passwords available on the dark web which have been exposed during data breaches, and we can be pretty sure that cyber criminals are using them for personal gain of some sort.

All of this is security fatigue: it’s a real problem, and one that will only get worse, as we continue to expect users to remember lots of different passwords and requirements. As well as making life more difficult than it needs to be for the user, it means storing user credentials within your online service – a process which opens you up to hackers, who might be looking to sell these credentials on.

Fortunately, there is a solution available which can help with these issues! By removing the need to store credentials and allowing the user to use a credential that they already have and probably use daily, Azure Active Directory B2C can reduce security fatigue.

Watch now – The magic behind external identity management

Watch now – The magic behind external identity management

Transform the way you provide access to your customers, partners and suppliers. Watch on-demand and learn:

  • The key differences between Azure AD B2B and B2C
  • How to sign in any user from your identity provider of choice
  • Which works best for you – B2B, B2C or a hybrid approach
Watch now

Azure Active Directory B2C

Azure Active Directory B2C is a new service from Microsoft which, through the provision of identity management, allows you to concentrate less on the issue of authentication and more on the features of your online applications.

Users are made able to use a social login such as Facebook, Amazon, Google, etc., with email and password as a backup if they don’t use any of the configured providers. Subsequent authentications are simple, as the user just needs to remember which provider they chose during registration. As a result, they don’t have to remember yet another password; they’re using credentials you use every day. What’s more, you don’t have to store their credentials, which reduces the size of your attack surface.

“You know it’s scalable, highly available and secure.”

Integration into your application is relatively simple, with Microsoft providing libraries that contain all the heavy lifting around authentication. The libraries are available in several flavours (.Net, PhP, etc) and as B2C uses standards based OpenID Connect and OAuth behind the scenes any standards compliant library will work. Additionally, plugins for popular applications such as WordPress are already available, making basic implementation nothing more than a configuration exercise.

As the name suggests, Azure Active Directory B2C is built upon the already massively used Azure Active Directory, so you know it’s scalable, highly available and secure. It’s also customisable, allowing you to tailor the user experience and branding to your needs. You can gather additional information during registration, and this can be used within the application (e.g. home address).

If you have more than one application configured within your Azure AD B2C tenant, you will be able to reuse the registration and login info between the applications giving you single sign-on (SSO) between applications.


By implementing Azure B2C for your online services you will not only help in reducing security fatigue for your users; you’ll also gain be able to use single sign-on between applications and reduce the attack surface of your application.

Next, download our e-Guide ‘Drive GDPR compliance with Azure AD B2C for web applications’. Find out how you can remove one of the weakest technological links in the struggle against cyber-crime.

Subscribe to the ThirdSpace mailing list and get your free buyer’s guide to Microsoft Enterprise Security

Subscribe to the ThirdSpace mailing list and get your free buyer’s guide to Microsoft Enterprise Security

Submit your business email to join our mailing list and we'll send you 'A buyer’s guide to Microsoft Enterprise Security'.

Profile shot of Jamie Vaughan.

About Jamie Vaughan

External Identity Consultant

Jamie joined ThirdSpace in 2013 after 16 years at Jaguar Land Rover (JLR), where he started as a webmaster and went on to become a developer and then a solution architect. He was part of the team...


You may also like...


Azure AD B2B vs B2C: What are the key differences between Microsoft’s external access products?


How to reduce membership friction and stay secure with Azure AD B2C


Secure application sign-in with Azure AD B2C

Recent Blog Articles

View All
Related topics

The magic behind external identity management

Watch and learn how to transform the way you provide customer and partner access.

Watch now

Need some help?

Send us your questions or feedback.

Friendly folks are standing by!

Contact Us
Award-winning solutions Award-winning solutions

Eight-time winner of the Microsoft Partner of the Year Award for Identity Management, Enterprise Mobility, and Security and Compliance.

ThirdSpace Please upgrade your browser

You are seeing this because you are using a browser that is not supported. The ThirdSpace website is built using modern technology and standards. We recommend upgrading your browser with one of the following to properly view our website:

Windows Mac

Please note that this is not an exhaustive list of browsers. We also do not intend to recommend a particular manufacturer's browser over another's; only to suggest upgrading to a browser version that is compliant with current standards to give you the best and most secure browsing experience.