How long does Mobile SSO session remains valid on device that interacts with different vendor and uses shared mode and entra id is used only for authentication

Question

Hi ,

If on a android there are multiple apps there are in shared mode , these apps use token only for authentication , then they communicate with their individual servers , no azure resources , how long does the SSO session remains valid . Say a scenario

1. User logs into app1 and starts using the app , entra id used only for authentication
2. after 2 hours user tries to access app 2 , will acquiretokensilent work to acquire silently as refresh token is still valid or the user session will be refreshed and user will be redirected to sign on as session is invalid.

Answer 1

Hi @Shreyas Rastogi , if Entra ID is used for authentication, then the SSO session duration is controlled by the Entra ID security token service (STS). By default, the SSO session duration is set to 1 hour.

In your scenario, if the user logs into app1 and starts using the app, and then after 2 hours tries to access app2, the acquiretokensilent method should work as long as the refresh token is still valid. The refresh token is used to silently acquire a new access token without requiring the user to sign in again. If the refresh token has expired or is invalid, the user will be prompted to sign in again.

If the user has signed out of app1, the SSO session will be invalidated and the user will be prompted to sign in again when accessing app2.

Please let me know if you have any questions and I can help you further.

If this answer helps you please mark "Accept Answer" so other users can reference it.

Thank you,

James