Reply
Level: Powered On
Posts: 3
Registered: ‎10-16-2017
Accepted Solution

MFA and Invalid Connection in Flow

Hi,

 

I have a tenant in which MFA has been activated for all users. I have created a user to run all my flows, but the flows breaks after a while and the only message i see is "Invalid connection". I assume this is because of MFA. Are there anyway to handle this or do i have to disable MFA for that specific user ?


Accepted Solutions
Level: Power Up
Posts: 3
Registered: ‎01-09-2018

Re: MFA and Invalid Connection in Flow

This solution should work for customers that use Microsoft Flow and service accounts for running the flow: https://blog.peterdahl.net/2018/01/09/microsoft-flow-and-azure-conditional-access-azure-mfa/

 

I still need feedback from Microsoft around a solution that will work for end-users.

 

/Peter Selch Dahl

View solution in original post


All Replies
Highlighted
Community Support Team
Posts: 3,909
Registered: ‎06-22-2016

Re: MFA and Invalid Connection in Flow

Hi @Bjarke,

 

I’m afraid that it might be caused by MFA authentication.


Please suggest your user try to refresh their connections to see if it will work.


There is a similar issue on this thread, Staff @TravisB has some suggestion on it. Please check it for more details:
https://powerusers.microsoft.com/t5/General-Flow-Discussion/Flow-Connections-error-due-to-Credential...


Best regards,
Mabel Mao

Level: Power Up
Posts: 3
Registered: ‎01-09-2018

Re: MFA and Invalid Connection in Flow

This solution should work for customers that use Microsoft Flow and service accounts for running the flow: https://blog.peterdahl.net/2018/01/09/microsoft-flow-and-azure-conditional-access-azure-mfa/

 

I still need feedback from Microsoft around a solution that will work for end-users.

 

/Peter Selch Dahl

Level: Power Up
Posts: 1
Registered: ‎06-26-2018

Re: MFA and Invalid Connection in Flow

Peter's answer was the fix we needed to bypass Azure Conditional Access(MFA) in order to keep Flows running. In case anyone needs the Flow IPs formatted for MFA exceptions, here is the US list formatted and sorted. This is for the Logic App Service IP List from Peter's Flow Limits and Configuration link.

 

13.91.252.184/32

13.92.98.111/32

40.114.82.191/32

40.117.99.79/32

40.117.100.228/32

40.118.241.243/32

40.118.244.241/32

40.121.91.41/32

52.160.90.237/32

52.160.92.112/32

137.135.106.54/32

138.91.188.137/32

 

 

- Dan

https://www.disruption.consulting

Level: Power Up
Posts: 3
Registered: ‎01-09-2018

Re: MFA and Invalid Connection in Flow

Smiley Very Happy Great to hear that it resolved your issue. I know that Microsoft is aware of the issue and that this solution is not the best in the world. I gets the job done for now Smiley Happy

Level: Powered On
Posts: 4
Registered: ‎07-05-2017

Re: MFA and Invalid Connection in Flow

Only works if you have Azure AD premium though, otherwise you can't add a policy.

Another solution would be to support app passwords?

Level: Power Up
Posts: 1
Registered: a week ago

Re: MFA and Invalid Connection in Flow

Hi all,

 

Is this issue still current? If so, do we know if Microsoft is planning to solve this issue?

 

Thanks in advance for any insights.

 

KR,

 

Lucas

 

Level: Powered On
Posts: 8
Registered: ‎10-02-2017

Re: MFA and Invalid Connection in Flow

Hi Peter - thanks for this post. Are you aware of any negative security consequences that could arise from bypassing MFA in this fashion?