Home

Oauth2.0 Azure Active Directory - How to see alive tokens

%3CLINGO-SUB%20id%3D%22lingo-sub-293212%22%20slang%3D%22en-US%22%3EOauth2.0%20Azure%20Active%20Directory%20-%20How%20to%20see%20alive%20tokens%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-293212%22%20slang%3D%22en-US%22%3E%3CP%3EIs%20there%20a%20way%20to%20see%20all%20tokens%20that%20are%20alive%20in%20Azure%20Active%20Directory%3F%20Looking%20at%20script%20and%20GUI%20options.%20Thanks.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-293212%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%20AD%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EIdentity%20Management%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOffice%20365%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-293823%22%20slang%3D%22en-US%22%3ERe%3A%20Oauth2.0%20Azure%20Active%20Directory%20-%20How%20to%20see%20alive%20tokens%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-293823%22%20slang%3D%22en-US%22%3E%3CP%3EThanks%20for%20clarifying.%20I%20thought%20there%20was%20an%20option%20to%20list%20tokens%20that%20were%20refreshed%20or%20other%20state.%20I%20will%20definitely%20keep%20that%20command%20though%20as%20it%20will%20be%20useful%20one%20day.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-293247%22%20slang%3D%22en-US%22%3ERe%3A%20Oauth2.0%20Azure%20Active%20Directory%20-%20How%20to%20see%20alive%20tokens%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-293247%22%20slang%3D%22en-US%22%3E%3CP%3ENo.%20That%20will%20effectively%20allow%20you%20access%20to%20any%20application%20your%20users%20are%20currently%20logged%20in%20to.%20If%20the%20idea%20is%20to%20revoke%20access%20for%20a%20specific%20user%2C%20you%20can%20use%20the%20Revoke-AzureADUserAllRefreshToken%20cmdlet%3A%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fpowershell%2Fmodule%2Fazuread%2Frevoke-azureaduserallrefreshtoken%3Fview%3Dazureadps-2.0%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fpowershell%2Fmodule%2Fazuread%2Frevoke-azureaduserallrefreshtoken%3Fview%3Dazureadps-2.0%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Highlighted
Fadi Amatoury
New Contributor

Is there a way to see all tokens that are alive in Azure Active Directory? Looking at script and GUI options. Thanks.

2 Replies

No. That will effectively allow you access to any application your users are currently logged in to. If the idea is to revoke access for a specific user, you can use the Revoke-AzureADUserAllRefreshToken cmdlet: https://docs.microsoft.com/en-us/powershell/module/azuread/revoke-azureaduserallrefreshtoken?view=az...

Thanks for clarifying. I thought there was an option to list tokens that were refreshed or other state. I will definitely keep that command though as it will be useful one day. 

Related Conversations
Refresh token expiration
michal_r in Security + Identity on
0 Replies
Azure Automation connecting to Exchange with MFA enforced
Chris Johnston in Azure on
13 Replies
A problem with the Zoom level of a Tab
Tavory in Discussions on
9 Replies
Intune Win32 apps error 0x80070002
bjornmertens in Microsoft Intune on
5 Replies
Unable to add the disk in Azure Scale set.
Prashant Sharma in Azure on
8 Replies