What you can do is revoke all refresh tokens, which in turn will invalidate any active session once the access token expires (up to 1 hour delay). To do this via the UI, open the Azure AD blade > Users > select the user > hit the Revoke sessions button on top. To do it via PowerShell, use the Revoke-AzureADUserAllRefreshToken
cmdlet (Azure AD module) or Revoke-MgUserSignInSession
(Graph SDK for PowerShell).
How to expire all logged in sessions of a user on Password Reset?
AkshitAhuja-4588
10
Reputation points
I want to destroy all existing logged in sessions if user Resets Password from one logged in device. How can I achieve this?
1 answer
Sort by: Most helpful
-
Vasil Michev 106.6K Reputation points MVP
2023-02-28T12:04:42.59+00:00