cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
alex139

Support Flow connections with Azure Multi Factor Authentication (MFA)

Submitted by Community Support on ‎05-31-2018 08:48 AM

If the authentication token lifetime is changed from "indefinite" to something else (e.g. 14 days), the connections will expire after 14 days and the connection will stay broken until we manually re-authenticate.

One workaround is to set the authentication lifetime to “undefined” as described in this documentation: https://docs.microsoft.com/en-us/azure/active-directory/active-directory-configurable-token-lifetime...

Another workaround is to configure Conditional Access to address this issue, as described in this article:  https://blog.peterdahl.net/2018/01/09/microsoft-flow-and-azure-conditional-access-azure-mfa/

 

Flow connections with Azure Multi Factor Authentication (MFA) should be supported, regardless of how we set the authentication token lifetime.

Status: Completed

This issue has been fixed. MFA will no longer cause tokens to expire after 14 days. For all confidential clients (like flows) the tokens will last until explictly revoked. Thank you.

11 Comments (11 New)
Comments
patrickabel
Advocate III
Advocate III
‎10-03-2018 08:10 PM

I'd love to see a response from MS on this one. MFA for all users will be the new norm and we've got to have a clear way to maintain connections within business solutions while still remaining secure and compliant. 

EnigmaticGeek
New Member
‎10-11-2018 10:14 AM

The fact that MFA-enabled accounts have to jump through hoops to use Flows is an example of MS having split personalities. They encourage their customers to implement security best practices yet those practices are not supported by some of their services. At a minimum, Flow should support app password.

Stephen
Power Automate
Power Automate
‎12-21-2018 09:02 PM
Status changed to: Completed

This issue has been fixed. MFA will no longer cause tokens to expire after 14 days. For all confidential clients (like flows) the tokens will last until explictly revoked. Thank you.

alex139
Community Support
Community Support
‎12-31-2018 01:03 AM

Great! Thanks, Stephen.

Anonymous
Not applicable
‎03-04-2019 08:07 AM

Is there an article that references this Stephen? I've searched and cannot find that MFA has been fixed for Flow anywhere.

BretKnoll
New Member
‎03-15-2019 05:42 AM

Hello, 

 

It seems Flow is now working with accounts using MFA. I did have some issues where I had to fix broken connection twice before it started working. It seems it has worked once in the last week. Hopefully it will work next week. 

alex139
Community Support
Community Support
‎03-15-2019 05:47 AM

@BretKnoll 

The Engineering team is aware of this issue. Please bear with us until this is fixed.

BretKnoll
New Member
‎03-15-2019 05:49 AM

I hope you saw my previous post was changed. I will try to respons back if it continues to work or if it is broken next week. 

alex139
Community Support
Community Support
‎03-15-2019 05:57 AM

@BretKnoll 

If you need to fix it again after 14 days please open a support case with us. Thank you. https://preview.flow.microsoft.com/en-us/support/

RyanSpooner
Regular Visitor
‎04-16-2019 04:37 AM

Every day for the past week I've had to fix connectors to Microsoft Teams and Microsoft Forms, because (I presume) of this issue.  It's working right now, but I'm sure it'll disconnect with an authentication error again either later today or tomorrow.

 

Any ideas please?  It's making Flow largely useless for me as our organisation requires MFA, and passwords that expire every 48 days (the latter being under review).  I can live with having to re-authenticate my flows once every 48 days when my password changes, but not daily.

 

Thanks.

FYI @Stephen