Auth0 not storing Azure AD refresh token with OpenId Connect

mk123 · March 27, 2023, 5:57am

When we use a Social connection and offline_access scope for Azure AD, then Auth0 stores the Azure AD refresh_token and access_token in identities object in user.

But we when use OpenID Connect enterprise connection and offline_access scope for the same Azure AD application, then Auth0 doesn’t store the Azure AD refresh_token and access_token in identities object in user.

Is this expected behavior? Is there no way to get Azure AD refresh_token and access_token when using OpenID Connect?

matt.g · March 29, 2023, 9:03pm

Hi @mk123,

Welcome back to the Auth0 Community!

Unfortunately Enterprise OpenID connections don’t currently support IDP access_tokens or refresh_tokens, however I confirmed that this is on the product roadmap and could be released as early as April 2023.

I hope this helps!

Thank you,
Matt

system · April 12, 2023, 9:03pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Auth0 Token Refresh Does Not Automatically Refresh Azure AD Issued Access Token Knowledge Articles refresh-token , access-token , azure , provider , idp , 3rd-party-api	1	4045	August 17, 2022
Logout from enterprise connection will logout from the auth0 account Help logout , azure-ad	2	2386	March 9, 2022
Google App/Gsuite Enterprise Connection refresh token Help auth0	4	3845	January 16, 2020
Auth0 Azure AD Registered app Help connections , azure-ad-enterprise-connection	4	1236	March 16, 2023
No refresh token is available on Microsoft AzureAD Help auth0 , api	5	8179	April 24, 2020

Auth0 not storing Azure AD refresh token with OpenId Connect

Related topics