cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
Anonymous
Not applicable

Constant authentication issue with O365

I have setup a number of Flows that users O365 application (SharePoint, OWA, Dynamics), after a few days, Flows stop working due to authentication error (Error 401) and I need to re-connect the steps. This issue has happened a few times. Is this a known problem? Any workaround?

17 REPLIES 17
v-micsh-msft
Community Support
Community Support

Hi @Anonymous,

 

Please take a look at the connections created under Microsoft Flow:

Manage connections in Microsoft Flow

Make sure the connections are all good.

Besides, there is thread talking about error 401 with tweet, see:

https://powerusers.microsoft.com/t5/Flow-Forum/Post-a-tweet-failing-with-a-401-Unauthorized-error-message/td-p/7712

And connections built under office 365 on my side works good till now, could you please share more details regarding the error message, and the Flow configuration?

Regards

Community Support Team _ Michael Shao
If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.
Anonymous
Not applicable

Thanks @v-micsh-msft.

 

I am waiting to reproduce the issue and paste it here. The issue is different from your referenced forums post and I believe it is to do with Office365 2FA. 2FA is enabled on all Our o365 accounts. It seems like every now and then the access token is revoked and Flow must get re-authorised.

Anonymous
Not applicable

Issue happened again acroos *all* Flows that are connected to our Office365 account. See the screenshot below

 

flow_auth_error.PNG

 

And here is the error message body JSON response:

{
  "status": 401,
  "message": "{\"error_description\":\"Invalid JWT token. The token is expired.\"}",
  "source": "https://XYZ.sharepoint.com/sites/Consulting ...",
  "errors": []
}

 

For me this looks like a authentication problem with Office365 2FA. I think the JWT token expires every 14 days or so and require re-authentication.

Anonymous
Not applicable

Any workaround for this issue? this is beining happening again on all O365 Flow connections.

Hi @Anonymous,

 

Apologize for the late response.

For the connections, is it available for you to update the Connection information through Microsoft Flow gear button->Connections to update the authentication information for the problematic connection?

76.PNG

Please check the Update Connection part in the following article:

https://flow.microsoft.com/en-us/documentation/add-manage-connections/

 

In addition, I will forward this and if there is any helpful information on this, I will post back.

Regards

Community Support Team _ Michael Shao
If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.
Anonymous
Not applicable

Yes and that is what I've been doing. every now and then the token expiers, so the Flow stops and I should update the connection. Here is the error message for O365 services (Outlook, CRM, ...).

 

"Failed to refresh access token for service: office365certificate. Correlation Id=83ad79e3-f50c-4766-aaaa-770f0e0f1b81, UTC TimeStamp = 2/5/2017 5:35:06 AM, Error: Failed to acquire token from AAD: AADSTS50076: Due to a configuration change made by your administrator, or because you moved to a new location, you must use multi-factor authentication to access '00000002-0000-0ff1-ce00-000000000000'. Trace ID: ac065f8c-8d54-402c-a20f-952fb4618aaf Correlation ID: c907c75f-e1a3-4069-9e12-f6afae6745f4 Timestamp: 2017-02-05 05:35:04Z "

Same probleme here. Happens after 2FA-expiry.

This is very annoying, because one doesn't get a notification about a broken connection.

 

Best solution would be to circumvent 2FA after a successfull connection....

I am getting similar failures. I am running around 8 flows that use the same sharepoint connection and randomly some are succeding and some are failing with the get items: error_description":"Invalid JWT token. The token is expired.

Have you tried creating an App password for the Flow?

Anonymous
Not applicable

Yes, it doesn't let me to login using app password. Auth happens through MS SSO and it doesn't allow app passwords.

This error is popping up in a lot of blogs/forums.

 

It looks like if MFA is enabled then all accounts used to connect to SharePoint/Office365 services get locked out after the session timeout period. What happened to having a 'service account' for the services so this kind of thing doesn't happen?!

 

"Invalid JWT token. The token is expired"

Giving this post another boost, because this is only thread I can find on the topic. I have 2FA enabled, remembering re-authenticating every 14 days makes my app too unreliable. Also having this issue in Power BI.

 

Any solution to keep this connections permentely active until I change my password? Without turning off 2FA.

Having this as an issue too with a weird variant. I've got a user that can get on in the web app and on his phone (post enabling MFA) but now his Outlook 2016 application in Windows 10 won't sync. Tried uninstalling and starting over and it won't even let us add the account there now and tell them "Something went wrong".

 

I can see in Azure AD that the attempt is referencing error 50076.

Dogbyte
Frequent Visitor

I have this issue as well, didnt know my flows were failing, until I looked and saw the failed connections. 

 

Is this meant to be used in production environments? I cant have flows all over the place that i have to "touch" every 14 days. That is not sustainable and dependable. What is the best practice used here? create a separate user account that have multi factor auth enabled? or setup another type of authentication between the app and the environment? 

My team and I are also encountering this issue frequently today after not having seen it at all before. Our organization does not currently utilize 2FA/MFA for anything related to these accounts or other Microsoft products.

Yulia
Frequent Visitor

Same issue here. Need to reconnect every week due to 2FA.

Even worth that each connector needs to be reconnected separately at different time. As a workaround it would be great if you can go and reconnect to all connectors at once, and if you can do it before the expiry date. So, at least we can maintain connections manually.

 

I'm wondering what will happen to the running flows if in the middle of the running flow it gets disconected?

For example, user starts an approval flow, it successfully trigered and sent to the approver, then the approver doesn't approve it  within a week, meanwhile flow connections expire. What happens with the running flow? Does it fail? I guess by default it will not send any notifications about the issue.As result, nor the user requested approval, nor the approver know that connections are expired and the flow faild. This makes Flow very unreliable. 

 

Please address this issue asap.

helsby
Advocate I
Advocate I

Same here with the Microsoft MFA account set up. The annoying thing is I don't even get notified that the authentication has failed until the weekly email comes through.

Using an app password does not work as the SSO detects that the browser supports MFA and therefore refuses to connect with an app password.

Helpful resources

Announcements

Community will be READ ONLY July 16th, 5p PDT -July 22nd

Dear Community Members,   We'd like to let you know of an upcoming change to the community platform: starting July 16th, the platform will transition to a READ ONLY mode until July 22nd.   During this period, members will not be able to Kudo, Comment, or Reply to any posts.   On July 22nd, please be on the lookout for a message sent to the email address registered on your community profile. This email is crucial as it will contain your unique code and link to register for the new platform encompassing all of the communities.   What to Expect in the New Community: A more unified experience where all products, including Power Apps, Power Automate, Copilot Studio, and Power Pages, will be accessible from one community.Community Blogs that you can syndicate and link to for automatic updates. We appreciate your understanding and cooperation during this transition. Stay tuned for the exciting new features and a seamless community experience ahead!

Summer of Solutions | Week 4 Results | Winners will be posted on July 24th

We are excited to announce the Summer of Solutions Challenge!    This challenge is kicking off on Monday, June 17th and will run for (4) weeks.  The challenge is open to all Power Platform (Power Apps, Power Automate, Copilot Studio & Power Pages) community members. We invite you to participate in a quest to provide solutions to as many questions as you can. Answers can be provided in all the communities.    Entry Period: This Challenge will consist of four weekly Entry Periods as follows (each an “Entry Period”)   - 12:00 a.m. PT on June 17, 2024 – 11:59 p.m. PT on June 23, 2024 - 12:00 a.m. PT on June 24, 2024 – 11:59 p.m. PT on June 30, 2024 - 12:00 a.m. PT on July 1, 2024 – 11:59 p.m. PT on July 7, 2024 - 12:00 a.m. PT on July 8, 2024 – 11:59 p.m. PT on July 14, 2024   Entries will be eligible for the Entry Period in which they are received and will not carryover to subsequent weekly entry periods.  You must enter into each weekly Entry Period separately.   How to Enter: We invite you to participate in a quest to provide "Accepted Solutions" to as many questions as you can. Answers can be provided in all the communities. Users must provide a solution which can be an “Accepted Solution” in the Forums in all of the communities and there are no limits to the number of “Accepted Solutions” that a member can provide for entries in this challenge, but each entry must be substantially unique and different.    Winner Selection and Prizes: At the end of each week, we will list the top ten (10) Community users which will consist of: 5 Community Members & 5 Super Users and they will advance to the final drawing. We will post each week in the News & Announcements the top 10 Solution providers.  At the end of the challenge, we will add all of the top 10 weekly names and enter them into a random drawing.  Then we will randomly select ten (10) winners (5 Community Members & 5 Super Users) from among all eligible entrants received across all weekly Entry Periods to receive the prize listed below. If a winner declines, we will draw again at random for the next winner.  A user will only be able to win once overall. If they are drawn multiple times, another user will be drawn at random.  Individuals will be contacted before the announcement with the opportunity to claim or deny the prize.  Once all of the winners have been notified, we will post in the News & Announcements of each community with the list of winners.   Each winner will receive one (1) Pass to the Power Platform Conference in Las Vegas, Sep. 18-20, 2024 ($1800 value). NOTE: Prize is for conference attendance only and any other costs such as airfare, lodging, transportation, and food are the sole responsibility of the winner. Tickets are not transferable to any other party or to next year’s event.   ** PLEASE SEE THE ATTACHED RULES for this CHALLENGE**   Week 1 Results: Congratulations to the Week 1 qualifiers, you are being entered in the random drawing that will take place at the end of the challenge.   Community MembersNumber SolutionsSuper UsersNumber Solutions Deenuji 9 @NathanAlvares24  17 @Anil_g  7 @ManishSolanki  13 @eetuRobo  5 @David_MA  10 @VishnuReddy1997  5 @SpongYe  9JhonatanOB19932 (tie) @Nived_Nambiar  8 @maltie  2 (tie)   @PA-Noob  2 (tie)   @LukeMcG  2 (tie)   @tgut03  2 (tie)       Week 2 Results: Congratulations to the Week 2 qualifiers, you are being entered in the random drawing that will take place at the end of the challenge. Week 2: Community MembersSolutionsSuper UsersSolutionsPower Automate  @Deenuji  12@ManishSolanki 19 @Anil_g  10 @NathanAlvares24  17 @VishnuReddy1997  6 @Expiscornovus  10 @Tjan  5 @Nived_Nambiar  10 @eetuRobo  3 @SudeepGhatakNZ 8     Week 3 Results: Congratulations to the Week 3 qualifiers, you are being entered in the random drawing that will take place at the end of the challenge. Week 3:Community MembersSolutionsSuper UsersSolutionsPower Automate Deenuji32ManishSolanki55VishnuReddy199724NathanAlvares2444Anil_g22SudeepGhatakNZ40eetuRobo18Nived_Nambiar28Tjan8David_MA22   Week 4 Results: Congratulations to the Week 4 qualifiers, you are being entered in the random drawing that will take place at the end of the challenge. Week 4:Community MembersSolutionsSuper UsersSolutionsPower Automate Deenuji11FLMike31Sayan11ManishSolanki16VishnuReddy199710creativeopinion14Akshansh-Sharma3SudeepGhatakNZ7claudiovc2CFernandes5 misc2Nived_Nambiar5 Usernametwice232rzaneti5 eetuRobo2   Anil_g2   SharonS2  

Check Out | 2024 Release Wave 2 Plans for Microsoft Dynamics 365 and Microsoft Power Platform

On July 16, 2024, we published the 2024 release wave 2 plans for Microsoft Dynamics 365 and Microsoft Power Platform. These plans are a compilation of the new capabilities planned to be released between October 2024 to March 2025. This release introduces a wealth of new features designed to enhance customer understanding and improve overall user experience, showcasing our dedication to driving digital transformation for our customers and partners.    The upcoming wave is centered around utilizing advanced AI and Microsoft Copilot technologies to enhance user productivity and streamline operations across diverse business applications. These enhancements include intelligent automation, AI-powered insights, and immersive user experiences that are designed to break down barriers between data, insights, and individuals. Watch a summary of the release highlights.    Discover the latest features that empower organizations to operate more efficiently and adaptively. From AI-driven sales insights and customer service enhancements to predictive analytics in supply chain management and autonomous financial processes, the new capabilities enable businesses to proactively address challenges and capitalize on opportunities.    

Updates to Transitions in the Power Platform Communities

We're embarking on a journey to enhance your experience by transitioning to a new community platform. Our team has been diligently working to create a fresh community site, leveraging the very Dynamics 365 and Power Platform tools our community advocates for.  We started this journey with transitioning Copilot Studio forums and blogs in June. The move marks the beginning of a new chapter, and we're eager for you to be a part of it. The rest of the Power Platform product sites will be moving over this summer.   Stay tuned for more updates as we get closer to the launch. We can't wait to welcome you to our new community space, designed with you in mind. Let's connect, learn, and grow together.   Here's to new beginnings and endless possibilities!   If you have any questions, observations or concerns throughout this process please go to https://aka.ms/PPCommSupport.   To stay up to date on the latest details of this migration and other important Community updates subscribe to our News and Announcements forums: Copilot Studio, Power Apps, Power Automate, Power Pages

Users online (879)