We have basic Active directory created in azure portal and we have web applications registered there. Currently we are using default config of AD. But we have situation like for the application we need to set inactive timeout for 30 mins. I was using this methods:
Connect-AzureAD -TenantId xxxxxx
Create new ad policy:
New-AzureADPolicy -Definition @('{"TokenLifetimePolicy":{"Version":1,"MaxInactiveTime":"00:30:00"}}') -DisplayName "WebApiDefaultPolicyScenario" -IsOrganizationDefault $false -Type "TokenLifetimePolicy"
Adding policy to app.
Add-AzureADServicePrincipalPolicy -Id 3536sdt63fc-49d8-97de-3acb81aebfce -RefObjectId 43strt-4f1c-4d06-a554-5edbafe799bf
But when I try to test inactive time out I am not seeing the change.
It seems to be a bug, I have seen a similar issue here . The command works fine, we can see the policy which we added to the service principal via Get-AzureADServicePrincipalPolicy
, but it seems not to affect. If it is necessary, you could open an issue in the Github.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.