Hello Prathap Dasari
Welcome to Microsoft Q&A Platform, thanks for posting your query here.
It depends on various factors like type of Entra ID integration (legacy or AKS managed), whether --admin flag was used, and whether you have local accounts. Usually, the cached token is used until the expiry or if the kube config is deleted.
You could consider configuring the token lifetime using Configurable token lifetimes in the Microsoft identity platform.
You can also configure sign in frequency via conditional access policy. You can apply it on the AKS server Entra app, which is global ( Azure Kubernetes Service AAD Server). The refresh token will have the same lifetime, but it will it won't work after the user login is expired.
Hope this helps.
If the suggested response helped you resolve your issue, please 'Accept as answer', so that it can help others in the community looking for help on similar topics.