Kill all active user sessions in any Azure AD/ Office 365 application

If you are are ever in a situation where you have to deal with a compromised O365 account or situation similar to mine where users were assigned Onedrive/SPO license and you want to revoke them and stop users from using them immediately, the below cmdlet is much helpful.

If you are dealing with a large group of users, you may tire your fingers clicking on “initiate sign-out” or better get all members of the group and use cmdlet Revoke-AzureADUserAllRefreshToken which invalidates the refresh tokens issued to applications for a user. The cmdlet also invalidates tokens issued to session cookies in a browser for the user. The cmdlet operates by resetting the refreshTokensValidFromDateTime user property to the current date and time.

Get the group objectid

Get-MsolGroup [groupname] | fl ObjectId

Next, export the users of the group to a csv

Get-MsolGroupMember -GroupObjectId xxxxx-xxxxx-xxxxx-xxxxx | Select-Object EmailAddress | Export-Csv -Path c:\temp\users.csv

Import the csv and revoke th refresh token for these users.

Import-CSV “c:\temp\users.csv” | % {Get-AzureADUser -SearchString $_.emailaddress | Revoke-AzureADUserAllRefreshToken}

4 thoughts on “Kill all active user sessions in any Azure AD/ Office 365 application

  1. preeti rawat February 11, 2021 / 3:04 pm

    Hello Daniel,

    Does it permanently revoke sessions for user.
    I need to revoke only current session for one active user, and afterwards let user to login as usual, but didn’t want to disable or permanently revoked.


    • Godwin Daniel February 12, 2021 / 10:07 am

      Hi Preeti,

      If it’s just one users, better to do it from the admin portal, just select the user and clear the sessions.


    • Godwin Daniel March 5, 2021 / 4:30 pm

      No it’s not permanent, only kill all logged on sessions


  2. Shakthi August 28, 2021 / 10:46 am

    Helped me a lot to revoke multiple users at the same time


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.