What are the *new* default Refresh Token Lifetime and Session Token Lifetime values?

rasane 21 Reputation points
2021-03-04T23:54:37.537+00:00

Hi, as per documentation here https://learn.microsoft.com/en-us/azure/active-directory/develop/active-directory-configurable-token-lifetimes since end of January 2021, there is a change that the default times will be used and the above are no longer configurable. But what are those default values? We are investigating a development issue and need to know if it is related.. We cannot find the default configuration value documented anywhere..

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,664 questions
Accepted answer
  1. JamesTran-MSFT 36,456 Reputation points Microsoft Employee
    2021-03-09T21:04:18.957+00:00

    @rasane
    Thank you for your time and patience throughout this issue! I was able to get a response from our engineering team and will post it below.

    Update:
    The default lifetime values remain unchanged from the ones that are listed under the configurable token lifetime properties:

    • Refresh Token ---> Default token lifetime value is 90 days
    • Session Token ---> Default token lifetime value is until revoked. Unless the new "sign in frequency" feature is configured, it's until revoked.

    76022-image.png

    If you have any other questions, please let me know.
    Thank you for your time and patience throughout this issue.

    ----------

    Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. rasane 21 Reputation points
    2021-05-17T01:54:04.4+00:00

    Thank you, appreciate the response and apologies for delay in accepting.. thanks, rasane

    0 comments