Changing token lifetime policy

SamParrington · February 25, 2021, 4:36pm

Hi,

I’m trying to change the “token lifetime policy” in Azure via PowerShell, but it doesnt seem to work. I’ve
search through google for different ideas and syntaxes and nothing seems to work

This is what i have so far;

Authenticate ad global admin user for tenant

connect-AzureAD -Confirm

Create Access policy with token lifetime set to 12hrs

$policy = New-AzureADPolicy -Definition @(‘{“TokenLifetimePolicy”:{“Version”:1,“AccessTokenLifetime”:“12:00:00”}}’) -DisplayName “P4AccessPolicy” -IsOrganizationDefault $false -Type “TokenLifetimePolicy”

Verify policy has been created

get-azureadpolicy

List AzureAD linked applications, Public14 should be listed, make a note of the the ObjectId

get-azureadapplication

Assign the newly created policy to the Public14 application using the App Object ID & Policy ID

Add-AzureADApplicationPolicy -Id -RefObjectId $policy.id

Verify the Policy has been applied - this should report an Odatatype of “microsoft.graph.application”

Get-AzureADPolicyAppliedObject -Id $policy.id

If anyone could help that would be amazing

Thank you all

rob-simmers · February 25, 2021, 8:47pm

That is a very specific Azure question and with no errors it’s going to be difficult to assist if it is not simply not being set. Recommend that you look in Azure forums and if you cannot find the answer start a thread there:

Search - 9 results found - Microsoft Q&A

Topic		Replies	Views
Bulk change user password for AzureAD users PowerShell Help	2	205	April 20, 2022
(Azure)How to change retention period of each policy in Recoverservices vault PowerShell Help	1	129	August 18, 2018
Does Anyone Have a Script to Enable / Disable Global Admin on a Timed Basis? PowerShell Help	4	177	August 19, 2020
Enable per-user MFA for all users in office 365/AzureAd Tenant PowerShell Help	3	317	January 15, 2023
Powershell & Local Security Policy Help PowerShell Help	5	223	June 19, 2019