PRT on Android Platform

testuser7 276 Reputation points
2024-07-16T12:59:45.8733333+00:00

Hello,

I am seeking one clarification with respect to PRT on Android Platform.

I am not able to understand following  comment in the doc at https://learn.microsoft.com/en-us/entra/identity/devices/concept-primary-refresh-token

User's image

Microsoft Intune Android
Microsoft Intune Android
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Android: An open-source mobile platform based on the Linux kernel, developed by Google, and maintained by the Open Handset Alliance.
332 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
23,146 questions
{count} votes

3 answers

Sort by: Most helpful
  1. Givary-MSFT 35,216 Reputation points Microsoft Employee
    2024-07-17T08:14:08.68+00:00

    @testuser7 Thank you for reaching out to us, As I understand you are looking for detailed explanation on this - A PRT is valid for 90 days and is continuously renewed as long as the device is in use. However, it's only valid for 14 days if the device isn't in use.

    Hope this explains -

    90-Day Validity: A PRT is valid for 90 days if the device is continuously in use. During this period, it gets continuously renewed to ensure that the user remains authenticated.

    14-Day Validity: If the device is not in use, the PRT remains valid for only 14 days. After this period, the user will need to authenticate again to obtain a new PRT.

    Let me know if this answers your question, feel free to post back.

    0 comments No comments

  2. testuser7 276 Reputation points
    2024-07-18T20:48:37.94+00:00

    @Givary-MSFT you copy pasted the document. That was not my intention. Let me paste it again.

    90-Day Validity: A PRT is valid for 90 days if the device is continuously in use. During this period, it gets continuously renewed to ensure that the user remains authenticated.

    14-Day Validity: If the device is not in use, the PRT remains valid for only 14 days. After this period, the user will need to authenticate again to obtain a new PRT.

    How do you practically and hands-on way define that is device is continuously in use OR not in use ??

    If device is power-on but never send the account to AAD, would you call it device is continuously in use ??

    0 comments No comments

  3. testuser7 276 Reputation points
    2024-07-22T14:02:50.01+00:00

    @Givary-MSFT No update ???

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.