This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 48%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
I really like the PAT tokens in Azure Dev Ops, is there an equivalent to that I can use for my own B2B application with Microsoft Identity? If not is this something on the roadmap? I couldn't find any way to generate a token that lives for more than 90 days.
Thanks!
Hello @Drew , Azure AD does not support long lived tokens. Refresh tokens have a default value of 90 days, 24 hours if they are issued to an SPA. You can however create your own PAT implementation using application (service principal) authentication. Keep in mind this involves high level permissions so be careful with the operations allowed. Basically, your (coded) application would generate, accept and manage (store, refresh, revoke, etc.) lifetime for PAT tokens for your B2B users. All operations on their behalf would be done using application permissions in tandem with MS Graph. Optionally you might try Conditional Access for workload identities (in preview) to secure access for server-to-server scenarios like the aforementioned.
Let us know if this answer was helpful to you or if you need additional assistance. If it was helpful, please remember to accept it so that others in the community with similar questions can more easily find a solution.