Customized token lifetimes and O365 apps

Copper Contributor

Can someone confirm if customized token lifetimes apply to O365? Is there a list of apps supported?

 

According to link below customized token lifetimes apply to Office 365 only entire tenant is modified.

 

https://cloudblogs.microsoft.com/enterprisemobility/2016/10/11/configurable-token-lifetimes-in-azure...

 

 

2 Replies

Anyone?

This feature is still in public preview. Therefore anything known about it is likely to change. If the doc says it apply to all Office 365, then they are all effected by the same token length.

Microsoft recently raised token lengths to 90 days on new tenants, so you could do that and improve your tenant security (less login prompts = less opportunities for being phished). Contrary, if you present login pages to users frequently and often then users just type their password everywhere they get asked, which means more login prompts is more opportunities to be phished. Longer token length equals less password use, equals more secure app access.