Why without Consent AzureAD Application Refresh Token gets delivered

Trying to get an access_token and refresh_token in. For this I am doing an oauth2 call with help of https://login.microsoftonline.com/{{ Tenant-ID }}/oauth2/v2.0/authorize?…… and where the response_type is code. With help of the CODE the next request will be the TOKEN call https://login.microsoftonline.com/{{ Tenant-ID }}/oauth2/v2.0/token with the scope: –data-urlencode ‘scope=https://graph.microsoft.com/user.read offline_access’ Now when I…

22/11/2023Microsoft Entra (Azure AD)

Share:

You may be interested in

Access Package – Questions
Microsoft Entra (Azure AD),
Hey! I have been deploying access packages in my organisation for the past 14months. The questions and answers section is very useful and combined with custom extensions can automate…
19/01/2024
Unable to create a dynamic membership rule using OR conditional
Microsoft Entra (Azure AD),
I am trying to update the dynamic criteria for a group to consider if the members are either a member of a set of locations OR they have an EmployeeType…
17/10/2023
Protect your identities from a Token theft using Token Protection in Conditional Access
Microsoft Entra (Azure AD),
In this blog post, I will show you the steps required to enable the Token Protection feature using Conditional Access in Entra ID. Along with a brief simulation of the…
05/09/2023
Access Reviews for non-Entra Roles
Microsoft Entra (Azure AD),
Hi, Is there a way to conduct Access Reviews for roles in Purview, such as the e-Discovery role? I know that Access Reviews are normally only possible to…
05/03/2024
Move From Duo SSO to Azure Entra ID MFA (synched from ADDS on-prem)
Microsoft Entra (Azure AD),
Hello, I have Duo set up to MFA users for RD gateway for remote connections from outside to an on-prem gateway server, RD web, and several SaaS apps that…
27/02/2024
Global Secure Access bypass (Internet and web filtering)
Microsoft Entra (Azure AD),
Hi, I understand in Global Secure Access "365" I can use a Conditional Access Policy to block access to 365 if not from a "All Compliant Network locations" to…
05/04/2024
Creating MFA conditional Policy, not triggering to enroll when signing in.
Microsoft Entra (Azure AD),
We're looking to rollout MFA for all our users, specifically just for any access to their Exchange Online and Microsoft Teams. I've followed the the instructions from Microsoft's Knowledge article: https://learn.microsoft.com/en-us/entra/identity/authentication/tutorial-enable-azure-mfa…
26/03/2024
After Device Intune Enroll – Device gone from Entra?!
Microsoft Entra (Azure AD),
Hello, Intune/Entra/Endpoint/Security - its extremely overwhelming and confusing. We're just getting this started as we've moved to 365 and licenses that add Intune. A windows 11 laptop. Domain…
28/02/2024
New Blog Post | Auto Rollout of Conditional Access Policies in Microsoft Entra ID
Microsoft Entra (Azure AD),
In November 2023 at Microsoft Ignite, we announced Microsoft-managed policies and the auto-rollout of multifactor authentication (MFA)-related Conditional Access policies in customer tenants. Since then, we’ve rolled out report-only policies for over 500,000…
06/02/2024
Entra ID Connect cloud sync: User and group sync is quarantined
Microsoft Entra (Azure AD),
Hi, I connected our on-premise AD with Entra ID with Azure AD Connect Cloud Sync. Agents are active, but User and group sync is quarantined with the following error.…
22/04/2024
AAD Connect is syncing two domains that are federated. Want to stop syncing one
Microsoft Entra (Azure AD),
Good morning. We aquired a company and federated with their domain. We have an AAD connect client that is syncronizing ours and their domain to our M365 tenant. We are…
14/11/2023
custom branding/login page for free AzureAD/EntraID
Microsoft Entra (Azure AD),
Hello, I see that there is an option to have a custom sign-in page for a free version of AzureAD / Entra Id.Microsoft Entra Plans and Pricing | Microsoft Security…
17/01/2024