If the authentication token lifetime is changed from "indefinite" to something else (e.g. 14 days), the connections will expire after 14 days and the connection will stay broken until we manually re-authenticate.
One workaround is to set the authentication lifetime to “undefined” as described in this documentation: https://docs.microsoft.com/en-us/azure/active-directory/active-directory-configurable-token-lifetime...
Another workaround is to configure Conditional Access to address this issue, as described in this article: https://blog.peterdahl.net/2018/01/09/microsoft-flow-and-azure-conditional-access-azure-mfa/
Flow connections with Azure Multi Factor Authentication (MFA) should be supported, regardless of how we set the authentication token lifetime.
This issue has been fixed. MFA will no longer cause tokens to expire after 14 days. For all confidential clients (like flows) the tokens will last until explictly revoked. Thank you.
I'd love to see a response from MS on this one. MFA for all users will be the new norm and we've got to have a clear way to maintain connections within business solutions while still remaining secure and compliant.
The fact that MFA-enabled accounts have to jump through hoops to use Flows is an example of MS having split personalities. They encourage their customers to implement security best practices yet those practices are not supported by some of their services. At a minimum, Flow should support app password.
Great! Thanks, Stephen.
Is there an article that references this Stephen? I've searched and cannot find that MFA has been fixed for Flow anywhere.
It seems Flow is now working with accounts using MFA. I did have some issues where I had to fix broken connection twice before it started working. It seems it has worked once in the last week. Hopefully it will work next week.
The Engineering team is aware of this issue. Please bear with us until this is fixed.
I hope you saw my previous post was changed. I will try to respons back if it continues to work or if it is broken next week.
If you need to fix it again after 14 days please open a support case with us. Thank you. https://preview.flow.microsoft.com/en-us/support/
Every day for the past week I've had to fix connectors to Microsoft Teams and Microsoft Forms, because (I presume) of this issue. It's working right now, but I'm sure it'll disconnect with an authentication error again either later today or tomorrow.
Any ideas please? It's making Flow largely useless for me as our organisation requires MFA, and passwords that expire every 48 days (the latter being under review). I can live with having to re-authenticate my flows once every 48 days when my password changes, but not daily.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.