Microsoft Confirms Entra Account Lockouts Due to Token Logging Error

Microsoft has confirmed that the Entra account lockouts that occurred over the weekend were due to the invalidation of short-lived user refresh tokens, which were mistakenly logged in internal systems. This incident resulted in account lockouts for Entra users. Refresh tokens are essential for keeping user sessions active without requiring frequent re-authentications. The error affected users' ability to access their accounts, thereby disrupting associated services.