Check session token info and lifetime

Diego Ramírez 60 Reputation points
2023-04-03T19:28:23.66+00:00

I have in my tenant a conditional access configuration which allows me to store a persistent login token. In the Sign-in logs appears the Unique token identifier of the user but is there any powershell command where I can see the session token of a user, its lifetime and renewal date? I would like to know when a user will be asked for authentication again without knowing the first time he/she was asked for it. Regards

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,813 questions
0 comments No comments
{count} votes

Accepted answer
  1. Vasil Michev 96,836 Reputation points MVP
    2023-04-04T06:25:43.7266667+00:00

    No, there isn't. Having access to the token is similar to having access to the user's password, and not something Microsoft will allow. What you can do instead is take a look at the "interactive" sign-in events for the user, which signal that a new refresh/access token combo was issued. As long as the client has a valid refresh token for the given app, no further interactive logins are needed, and token renewal events are displayed under the "non-interactive" section.

    0 comments No comments

0 additional answers

Sort by: Most helpful