The organization I work for right now wants to reduce the refresh token lifetime for our Office 365 products from 90 days (which is the default) to 3 days as a security measure. Based on Microsoft's docs, we need to have at least Azure AD Premium P1 license, and we are OK with that since we are on P2.
I have configured a new Conditional Access policy (Sign in frequency option) and applied it to my corporate email account, to refresh the token every day, just as a test thing. It works, since every day I get the authentication box pop-up, but when looking at the token it does not reset.
Just one mention here is that we are using federation with Okta.