cancel
Showing results for 
Search instead for 
Did you mean: 

Support Flow connections with Azure Multi Factor Authentication (MFA)

If the authentication token lifetime is changed from "indefinite" to something else (e.g. 14 days), the connections will expire after 14 days and the connection will stay broken until we manually re-authenticate.

One workaround is to set the authentication lifetime to “undefined” as described in this documentation: https://docs.microsoft.com/en-us/azure/active-directory/active-directory-configurable-token-lifetime...

Another workaround is to configure Conditional Access to address this issue, as described in this article:  https://blog.peterdahl.net/2018/01/09/microsoft-flow-and-azure-conditional-access-azure-mfa/

 

Flow connections with Azure Multi Factor Authentication (MFA) should be supported, regardless of how we set the authentication token lifetime.

Status: Completed

This issue has been fixed. MFA will no longer cause tokens to expire after 14 days. For all confidential clients (like flows) the tokens will last until explictly revoked. Thank you.

Comments
Level: Powered On

I'd love to see a response from MS on this one. MFA for all users will be the new norm and we've got to have a clear way to maintain connections within business solutions while still remaining secure and compliant. 

Level: Power Up

The fact that MFA-enabled accounts have to jump through hoops to use Flows is an example of MS having split personalities. They encourage their customers to implement security best practices yet those practices are not supported by some of their services. At a minimum, Flow should support app password.

Power Automate Staff
Status changed to: Completed

This issue has been fixed. MFA will no longer cause tokens to expire after 14 days. For all confidential clients (like flows) the tokens will last until explictly revoked. Thank you.

Microsoft

Great! Thanks, Stephen.

Level: Power Up

Is there an article that references this Stephen? I've searched and cannot find that MFA has been fixed for Flow anywhere.

Level: Power Up

Hello, 

 

It seems Flow is now working with accounts using MFA. I did have some issues where I had to fix broken connection twice before it started working. It seems it has worked once in the last week. Hopefully it will work next week. 

Microsoft

@BretKnoll 

The Engineering team is aware of this issue. Please bear with us until this is fixed.

Level: Power Up

I hope you saw my previous post was changed. I will try to respons back if it continues to work or if it is broken next week. 

Microsoft

@BretKnoll 

If you need to fix it again after 14 days please open a support case with us. Thank you. https://preview.flow.microsoft.com/en-us/support/

Level: Power Up

Every day for the past week I've had to fix connectors to Microsoft Teams and Microsoft Forms, because (I presume) of this issue.  It's working right now, but I'm sure it'll disconnect with an authentication error again either later today or tomorrow.

 

Any ideas please?  It's making Flow largely useless for me as our organisation requires MFA, and passwords that expire every 48 days (the latter being under review).  I can live with having to re-authenticate my flows once every 48 days when my password changes, but not daily.

 

Thanks.

FYI @Stephen