Hi, the lifetime of a refresh token cannot be changed. The lifetime of a refresh token is set to 90 days by default and cannot be reduced or lengthened.
However, you can configure the sign-in frequency in Conditional Access to define the time periods before a user is required to sign in again. This way, you can control the frequency of sign-ins and the time periods before a user is required to sign in again.
You can learn more about this in the following article: https://docs.microsoft.com/en-us/azure/active-directory/develop/refresh-tokens
Please let me know if you have any other questions and I can help you further.
If this answer helped you please mark it as "Verified" so other users can reference it.
Thank you,
James
29313428 0Reputation points
2023-02-23T09:56:18.2966667+00:00 Hello, I understand the usage of conditional access but we are not sure we want to use that.
Instead, we were looking for a way to disable the refresh token and only use the access token, but with a higher lifetime (24 hours). Would that be possible to do and if yes, can you please tell me where I can make this change?
Thank you,
Arsen.P.S: We are using MSAL Package.
29313428 0Reputation points
See AlsoAccess token expiration time2023-02-23T10:12:16.69+00:00 Hello, thanks for your suggestion.
In fact, we are looking for a way to disable the usage of the refresh token and instead use the access token alone but with longer lifetime. Would that be possible and if yes, can you tell me how to do that?
James Hamil 24,296Reputation points • Microsoft Employee
2023-02-23T23:06:21.8166667+00:00 Hi Arsen, you can try revoking the refresh token and issuing a new one. Have you looked into that?
James Hamil 24,296Reputation points • Microsoft Employee
2023-03-01T21:51:11.6133333+00:00 Hi Arsen, did my answer help you? If so can you please mark it as "Verified" so other users can reference it?
Thank you,
James
Sign in to comment
