MicrosoftDocs · OsmondJiang · Mar 30, 2026
diff --git a/products/aac-generate-summary.md b/products/aac-generate-summary.md
@@ -1,35 +1,35 @@
 # Generation Summary
 
-**Generated**: 2026-03-19 11:12:22
-**Total Duration**: 0m 29s
+**Generated**: 2026-03-30 07:49:26
+**Total Duration**: 1m 0s
 
 ## Product Crawl Summary
 
 Quick overview for reviewers. See individual product reports for details.
 
 | # | Product | Pages | Classified | New | Updated | Deleted | Status |
 |---|---------|-------|------------|-----|---------|---------|--------|
-| 1 | Azure Architecture | 443 | 334 | 1 | 2 | 2 | OK |
+| 1 | Azure Architecture | 455 | 340 | 23 | 20 | 11 | OK |
 
 ### Totals
 
 - **Products Processed**: 1 success, 0 failed
-- **Total Pages**: 443
-- **Total Classified**: 334
-- **Total New Pages**: 1
-- **Total Updated Pages**: 2
-- **Total Deleted Pages**: 2
+- **Total Pages**: 455
+- **Total Classified**: 340
+- **Total New Pages**: 23
+- **Total Updated Pages**: 20
+- **Total Deleted Pages**: 11
 
 ### Classification by Type (All Products)
 
 | Type | Count |
 |------|-------|
 | anti-patterns | 11 |
 | architecture-styles | 7 |
-| best-practices | 60 |
+| best-practices | 59 |
 | design-patterns | 51 |
-| example-workloads | 62 |
-| migration-guides | 30 |
+| example-workloads | 71 |
+| migration-guides | 28 |
 | reference-architectures | 53 |
 | solution-ideas | 29 |
 | technology-choices | 31 |

diff --git a/products/azure-active-directory-b2c/azure-active-directory-b2c.csv b/products/azure-active-directory-b2c/azure-active-directory-b2c.csv
@@ -7,7 +7,7 @@ https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-api-connector-t
 https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-captcha,Enable CAPTCHA,Enable CAPTCHA in Azure Active Directory B2C,Enable CAPTCHA protection in Azure AD B2C user flows and policies,Learn how to enable CAPTCHA in Azure AD B2C for user flows and custom policies to protect sign-in and sign-up flows from automated attacks.,"Important Effective May 1, 2025, Azure AD B2C will no longer be available to purchase for new customers.Learn more in our FAQ. Before you begin, use theChoose a policy typeselector at the top of this page to choose the type of policy you’re setting up. Azure Active Directory B2C offers two methods to define how users interact with your applications: through predefineduser flowsor through fully configurablecustom policies. The steps required in this article are different for each method. Azure Ac",2025-02-04T12:06:00.000Z,how-to,security,0.8,True,"How-to article for enabling CAPTCHA in B2C, with specific settings for user flows vs custom policies and configuration parameters. Product-specific security configuration.",unchanged
 https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-identity-provider,Add an identity provider,Add an identity provider - Azure AD B2C,Add external identity providers to Azure AD B2C tenant,Learn how to add an identity provider to your Active Directory B2C tenant.,"Important Effective May 1, 2025, Azure AD B2C will no longer be available to purchase for new customers.Learn more in our FAQ. You can configure Azure AD B2C to allow users to sign in to your application with credentials from external social or enterprise identity providers (IdP). Azure AD B2C supports external identity providers like Facebook, Microsoft account, Google, X, and any identity provider that supports OAuth 1.0, OAuth 2.0, OpenID Connect, and SAML protocols. With external identity pr",2025-05-01T11:17:00.000Z,how-to,configuration,0.7,True,"Shows how to configure various external IdPs; typically includes configuration fields, endpoints, and protocol-specific parameters.",unchanged
 https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-native-application,Register native client (for mobile and desktop),Add a native client application - Azure Active Directory B2C,Add and configure native client apps in Azure AD B2C,Learn how to add a native client application to your Active Directory B2C tenant.,"Important Effective May 1, 2025, Azure AD B2C will no longer be available to purchase for new customers.Learn more in our FAQ. Native client resources need to be registered in your tenant before your application can communicate with Azure Active Directory B2C. To register an application in your Azure AD B2C tenant, you can use our new unifiedApp registrationsexperience or our legacyApplications (Legacy)experience.Learn more about the new experience.",2025-05-01T11:17:00.000Z,how-to,configuration,0.65,True,"Native client registration requires specific configuration like public client flags, redirect URI schemes, and platform selection, which are concrete Azure AD B2C settings rather than conceptual content.",unchanged
-https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-password-change-policy,Self-service password change,Set up password change by using custom policies - Azure AD B2C,Configure password change using custom policies in Azure AD B2C,Learn how to set up a custom policy so users can change their password in Azure Active Directory B2C.,"Important Effective May 1, 2025, Azure AD B2C will no longer be available to purchase for new customers.Learn more in our FAQ. Before you begin, use theChoose a policy typeselector at the top of this page to choose the type of policy you’re setting up. Azure Active Directory B2C offers two methods to define how users interact with your applications: through predefineduser flowsor through fully configurablecustom policies. The steps required in this article are different for each method. You can ",2025-05-01T11:17:00.000Z,how-to,configuration,0.75,True,"Custom policy setup for password change uses XML policy elements, technical profile names, and claim types that are detailed configuration constructs unique to B2C.",unchanged
+https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-password-change-policy,Self-service password change,Set up password change by using custom policies - Azure AD B2C,Configure Azure AD B2C custom policy for password change,Learn how to set up a custom policy so users can change their password in Azure Active Directory B2C.,"Important Effective May 1, 2025, Azure AD B2C will no longer be available to purchase for new customers.Learn more in our FAQ. Before you begin, use theChoose a policy typeselector at the top of this page to choose the type of policy you’re setting up. Azure Active Directory B2C offers two methods to define how users interact with your applications: through predefineduser flowsor through fully configurablecustom policies. The steps required in this article are different for each method. You can ",2026-03-24T17:13:00.000Z,how-to,configuration,0.7,True,"The article describes detailed, product-specific configuration steps for enabling password change via Azure AD B2C custom policies, including specific policy elements, technical profile names, and configuration structure that go beyond generic knowledge. It is not just a tutorial; it encodes concrete configuration patterns unique to Azure AD B2C custom policies.",updated
 https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-password-reset-policy,Self-service password reset,Set up a password reset flow - Azure AD B2C,Configure password reset user flows in Azure AD B2C,Learn how to set up a password reset flow in Azure Active Directory B2C (Azure AD B2C).,"Important Effective May 1, 2025, Azure AD B2C will no longer be available to purchase for new customers.Learn more in our FAQ. Before you begin, use theChoose a policy typeselector at the top of this page to choose the type of policy you’re setting up. Azure Active Directory B2C offers two methods to define how users interact with your applications: through predefineduser flowsor through fully configurablecustom policies. The steps required in this article are different for each method. In asign",2025-01-05T08:00:00.000Z,how-to,configuration,0.75,True,"Password reset flows require specific policy configuration, endpoint names, and token behavior settings that are concrete and product-specific.",unchanged
 https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-profile-editing-policy,Profile editing policy,Set up a profile editing flow - Azure AD B2C,Configure profile editing user flows in Azure AD B2C,Learn how to set up a profile editing flow in Azure Active Directory B2C.,"Important Effective May 1, 2025, Azure AD B2C will no longer be available to purchase for new customers.Learn more in our FAQ. Before you begin, use theChoose a policy typeselector at the top of this page to choose the type of policy you’re setting up. Azure Active Directory B2C offers two methods to define how users interact with your applications: through predefineduser flowsor through fully configurablecustom policies. The steps required in this article are different for each method.",2025-05-01T11:17:00.000Z,how-to,configuration,0.75,True,"Profile editing flows require selecting attributes, defining policy names, and configuring token output, which are concrete configuration parameters.",unchanged
 https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-ropc-policy,Resource owner password credentials policy,Set up a resource owner password credentials flow - Azure AD B2C,Configure resource owner password credentials (ROPC) flow in Azure AD B2C,Learn how to set up the resource owner password credentials (ROPC) flow in Azure Active Directory B2C.,"Important Effective May 1, 2025, Azure AD B2C will no longer be available to purchase for new customers.Learn more in our FAQ. Before you begin, use theChoose a policy typeselector at the top of this page to choose the type of policy you’re setting up. Azure Active Directory B2C offers two methods to define how users interact with your applications: through predefineduser flowsor through fully configurablecustom policies. The steps required in this article are different for each method. In Azure",2025-02-24T08:00:00.000Z,how-to,configuration,0.75,True,"ROPC setup in B2C uses specific endpoints, policy names, and app registration settings that are detailed configuration values.",unchanged

diff --git a/products/azure-active-directory-b2c/report.md b/products/azure-active-directory-b2c/report.md
@@ -1,9 +1,9 @@
 ---
-generated_at: '2026-03-16'
+generated_at: '2026-03-30'
 category_descriptions:
-  configuration: 'Configuring Azure AD B2C: custom policies, user flows, tokens, MFA,
-    identity providers, app/API registration, UI/localization, claims, journeys, SSO,
-    and advanced auth options for many app types.'
+  configuration: Configuring Azure AD B2C policies, user flows, tokens, identity providers,
+    MFA, custom UI, app/API registration, and advanced auth options for web, SPA,
+    mobile, and desktop apps.
   integrations: End-to-end patterns for integrating Azure AD B2C into apps and APIs,
     configuring identity providers, custom policies, fraud/risk tools, and securing
     traffic with proxies, WAFs, and monitoring.
@@ -31,16 +31,16 @@ category_descriptions:
 skill_description: Expert knowledge for Azure Active Directory B2C development including
   troubleshooting, best practices, decision making, architecture & design patterns,
   limits & quotas, security, configuration, integrations & coding patterns, and deployment.
-  Use when designing B2C user flows/custom policies, MFA/IdP sign-in, app/API registration,
-  CI/CD deployment, or logging, and other Azure Active Directory B2C related development
-  tasks. Not for Azure Information Protection (use azure-information-protection),
-  Azure Security (use azure-security), Azure Role-based access control (use azure-rbac),
+  Use when designing B2C user flows/custom policies, MFA/IdP setup, app/API registration,
+  CI/CD deployment, or Sentinel logging, and other Azure Active Directory B2C related
+  development tasks. Not for Azure Information Protection (use azure-information-protection),
+  Azure Role-based access control (use azure-rbac), Azure Security (use azure-security),
   Azure Sentinel (use azure-sentinel).
-use_when: Use when designing B2C user flows/custom policies, MFA/IdP sign-in, app/API
-  registration, CI/CD deployment, or logging, and other Azure Active Directory B2C
-  related development tasks.
+use_when: Use when designing B2C user flows/custom policies, MFA/IdP setup, app/API
+  registration, CI/CD deployment, or Sentinel logging, and other Azure Active Directory
+  B2C related development tasks.
 confusable_not_for: Not for Azure Information Protection (use azure-information-protection),
-  Azure Security (use azure-security), Azure Role-based access control (use azure-rbac),
+  Azure Role-based access control (use azure-rbac), Azure Security (use azure-security),
   Azure Sentinel (use azure-sentinel).
 ---
 # Azure Active Directory B2C Crawl Report
@@ -55,8 +55,8 @@ confusable_not_for: Not for Azure Information Protection (use azure-information-
 
 ### Incremental Update
 - **New Pages**: 0
-- **Updated Pages**: 0
-- **Unchanged**: 289
+- **Updated Pages**: 1
+- **Unchanged**: 288
 - **Deleted Pages**: 0
 - **Compared With**: `/home/vsts/work/1/s/Agent-Skills/products/azure-active-directory-b2c/azure-active-directory-b2c.csv`
 
@@ -77,6 +77,11 @@ confusable_not_for: Not for Azure Information Protection (use azure-information-
 
 ## Changes
 
+### Updated Pages
+
+- [Self-service password change](https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-password-change-policy)
+  - Updated: 2025-05-01T11:17:00.000Z → 2026-03-24T17:13:00.000Z
+
 ## Classified Pages
 
 | TOC Title | Type | Confidence | Reason |
@@ -242,7 +247,6 @@ confusable_not_for: Not for Azure Information Protection (use azure-information-
 | [Profile editing policy](https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-profile-editing-policy) | configuration | 0.75 | Profile editing flows require selecting attributes, defining policy names, and configuring token output, which are concrete configuration parameters. |
 | [Register a SAML application](https://learn.microsoft.com/en-us/azure/active-directory-b2c/saml-service-provider) | configuration | 0.75 | SAML IdP configuration requires exact claim mappings, metadata URLs, certificate settings, and policy references that are detailed, product-specific configuration values. |
 | [Resource owner password credentials policy](https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-ropc-policy) | configuration | 0.75 | ROPC setup in B2C uses specific endpoints, policy names, and app registration settings that are detailed configuration values. |
-| [Self-service password change](https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-password-change-policy) | configuration | 0.75 | Custom policy setup for password change uses XML policy elements, technical profile names, and claim types that are detailed configuration constructs unique to B2C. |
 | [Self-service password reset](https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-password-reset-policy) | configuration | 0.75 | Password reset flows require specific policy configuration, endpoint names, and token behavior settings that are concrete and product-specific. |
 | [Sign-up or sign-in policy](https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-sign-up-and-sign-in-policy) | configuration | 0.75 | User flow setup includes concrete policy names, attribute selections, token settings, and UI configuration options that are specific to B2C configuration. |
 | [User profile attributes](https://learn.microsoft.com/en-us/azure/active-directory-b2c/user-profile-attributes) | configuration | 0.75 | Details built-in and extension attributes, and their mapping to Microsoft Graph; product-specific attribute configuration reference. |
@@ -305,6 +309,7 @@ confusable_not_for: Not for Azure Information Protection (use azure-information-
 | [Saviynt](https://learn.microsoft.com/en-us/azure/active-directory-b2c/partner-saviynt) | integrations | 0.70 | Provides product-specific configuration for Saviynt and Azure AD B2C, including connection parameters and application settings for cross-application integration. |
 | [Secure access to Web API (ASP.NET Core and Node.js)](https://learn.microsoft.com/en-us/azure/active-directory-b2c/enable-authentication-web-api) | integrations | 0.70 | Shows how to enforce access tokens on API endpoints; likely includes middleware or library configuration, token validation parameters, and API registration details specific to Azure AD B2C. |
 | [Security overview](https://learn.microsoft.com/en-us/azure/active-directory-b2c/security-architecture) | best-practices | 0.70 | Article explicitly focuses on best practices for securing all components of an Azure AD B2C solution, likely including product-specific recommendations and patterns across services. |
+| [Self-service password change](https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-password-change-policy) | configuration | 0.70 | The article describes detailed, product-specific configuration steps for enabling password change via Azure AD B2C custom policies, including specific policy elements, technical profile names, and configuration structure that go beyond generic knowledge. It is not just a tutorial; it encodes concrete configuration patterns unique to Azure AD B2C custom policies. |
 | [Set up direct sign-in](https://learn.microsoft.com/en-us/azure/active-directory-b2c/direct-signin) | configuration | 0.70 | Uses specific query parameters and policy configuration options to prepopulate sign-in names or redirect to social IdPs, which are product-specific settings. |
 | [Sign-in policy](https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-sign-in-policy) | configuration | 0.70 | Similar to other user flow docs, this page defines specific policy configuration fields, identity providers, and settings that are detailed B2C configuration parameters. |
 | [User access](https://learn.microsoft.com/en-us/azure/active-directory-b2c/manage-user-access) | configuration | 0.70 | Covers concrete configuration of attributes (DOB, country), terms-of-use capture, and policy behavior for managing access, which are product-specific. |