Change Office 365 Refresh Tocken Lifetime

AdrianC 1 Reputation point

The organization I work for right now wants to reduce the refresh token lifetime for our Office 365 products from 90 days (which is the default) to 3 days as a security measure. Based on Microsoft's docs, we need to have at least Azure AD Premium P1 license, and we are OK with that since we are on P2.

I have configured a new Conditional Access policy (Sign in frequency option) and applied it to my corporate email account, to refresh the token every day, just as a test thing. It works, since every day I get the authentication box pop-up, but when looking at the token it does not reset.

Just one mention here is that we are using federation with Okta.

Any ideas?

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,637 questions
{count} votes