Microsoft Entra ID · Developer & Technical
Authentication Extensibility Administrator
Creates and manages custom authentication extensions to customize sign-in and sign-up experiences for users.
Scope: Manage custom authentication extensions for authentication flows
Permissions
- Create custom authentication extensions
- Manage authentication extension settings
- Configure sign-in customizations
- Manage sign-up extensions
Common use cases
- Custom claim providers
- Token enrichment
- External attribute lookup
- Custom authentication workflows
Best practices
- Test extensions thoroughly
- Implement proper error handling
- Monitor extension performance
- Secure extension endpoints
Security considerations
- Extensions run in authentication flow
- Can affect all sign-ins
- Must be highly available