question

skiphofmann-5016 avatar image
0 Votes"
skiphofmann-5016 asked ·

Revoke-AzureADUserAllRefreshToken not working for one account

Hello

I can successfully run Revoke-AzureADUserAllRefreshToken -objectid <guid> for one particular account, and it works. However running the same command against a different account i get the below error. The account i am using to run the command is a global admin, and both target accounts are just regular accounts with no assigned roles

Revoke-AzureADUserAllRefreshToken : Error occurred while executing RevokeUserAllRefreshTokens
Code: Request_BadRequest
Message: An error occurred while processing the invalidating refresh tokens request.
RequestId: 17fece56-52ab-4a5f-9c51-353e425c2968
DateTimeStamp: Thu, 12 Mar 2020 16:57:34 GMT
HttpStatusCode: BadRequest
HttpStatusDescription: Bad Request
HttpResponseStatus: Completed
At line:1 char:1
+ Revoke-AzureADUserAllRefreshToken -ObjectId 79ba026c-1c52-4005-8292-c ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : NotSpecified: (:) [Revoke-AzureADUserAllRefreshToken], ApiException
+ FullyQualifiedErrorId : Microsoft.Open.AzureAD16.Client.ApiException,Microsoft.Open.AzureAD16.PowerShell.RevokeU
serAllRefreshTokens

azure-active-directory
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

michev avatar image
0 Votes"
michev answered ·

It's a very generic error, so not much we can decipher from it. Try repeating the operation via the O365 admin portal, or open a support case for proper troubleshooting.

· Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.