This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 28.999999999999996%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERJ%3C/text%3E%3C/svg%3E)
First of all, please excuse my ignorance. I am somewhat new to the world of SAML and Azure AD SSO and can just barely get this stuff to work with Azure AD SSO for cloud apps.
I would like someone to help me explain how i could change lifetime tokens to help me get to our goal of less logins on some cloud apps we have set up.
The problem i have, IT has received feedback from leadership and regular users that Workday app that we have set to use Azure AD SSO on mobile devices is not consistent in when it ask people to log in. Some says they can log in, then minimize the app and next day they can open the app again and they are not asked to re-authenticate. Then others say they authenticate and then also minimizes and a couple of hours later they are asked to re-authenticate.
I need to look for some diagram training i think that explains this in more detail. But if someone where could explain how this works and in which order do things happen.
Im reading about Access Tokens, SAML tokens, Single Sign On Session Tokens, Refresh tokens etc etc. But i am not understanding it. :(
The method referenced above is going to be deprecated soon, you should use a Conditional Access policy instead: https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/howto-conditional-access-session-lifetime