Auth0 not storing Azure AD refresh token with OpenId Connect

When we use a Social connection and offline_access scope for Azure AD, then Auth0 stores the Azure AD refresh_token and access_token in identities object in user.

But we when use OpenID Connect enterprise connection and offline_access scope for the same Azure AD application, then Auth0 doesn’t store the Azure AD refresh_token and access_token in identities object in user.

Is this expected behavior? Is there no way to get Azure AD refresh_token and access_token when using OpenID Connect?

1 Like

Hi @mk123,

Welcome back to the Auth0 Community!

Unfortunately Enterprise OpenID connections don’t currently support IDP access_tokens or refresh_tokens, however I confirmed that this is on the product roadmap and could be released as early as April 2023.

I hope this helps!

Thank you,
Matt

2 Likes

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.