Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,456 questions
Increase Access token lifetime to 12 hours using a custom policy
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 23%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPU%3C/text%3E%3C/svg%3E)
Praveena Uppalapati [ELB]
51
Reputation points
We're trying to configure access token expiry time to 12 hours using below powershell cmdlets, but it's not getting enforced on application.
New-AzureADPolicy -Definition @('{"TokenLifetimePolicy":{"Version":1,"AccessTokenLifetime":"12:00:00"}}') -DisplayName $policyName -IsOrganizationDefault $false -Type "TokenLifetimePolicy"
$app = Get-AzureADApplication -Filter "DisplayName eq '$applicationName'"
Add-AzureADApplicationPolicy -Id $app.ObjectId -RefObjectId $policy.Id
Need help in configuring access token expiry time to 12 hrs for an app in Azure AD (Default is 1 hr).
{count} vote
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 81%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Marilee Turscak-MSFT 33,801 Reputation points Microsoft Employee2021-10-20T19:44:29.323+00:00 What happens when you set the policy? Do you have any conditional access policies or default policies that could be overwriting this?
You can try the troubleshooting steps in this article as well. https://learn.microsoft.com/en-us/azure/active-directory/develop/configure-token-lifetimes
-
Praveena Uppalapati [ELB] 51 Reputation points
2021-11-26T06:50:15.38+00:00 We are having only one policy we are verifying the policy whether it is applied or not using the Get -AzureADPolicyAppliedObject command. Given the screenshot for the same.
Sign in to comment