- Status:
401 Unauthorized |
- Source: Office 365 connector (
exchange)
- Message: “Failed to refresh access token for service: aadcertificate”
- AAD Error Code:
AADSTS50076
- Meaning: Azure Active Directory (AAD) is requiring multi‑factor authentication (MFA) because of a configuration change or new location.
- Cause: The connection in Power Automate (Office 365 connector) is blocked because the token refresh failed. The error specifically says “interaction_required” — meaning the user must re‑authenticate interactively with MFA.
1. Whey MFA is there - can you please ask your admin if they have enabled MFA or conditional access, so existing connections can’t silently refresh tokens?
2. If the connection is tied to a personal account meaning flows are running under your login, they break when MFA is enforeced.
3. Ir seems the O365 connector is in the white list (block list) probably due to DLP or governance policies? If so, please check with admin.
4. Sometimes connection refeence expired - the connection object in the flow is marked “Enabled | Error” and needs re‑authentication.
Note: To me, number 1 (MFA) and number 4 (connection expiration) above, seems quick stuff to address.
Where you can arrest:
1. Re-authenticate the conneciton (Power Automate → Data → Connections. Find the Office 365 connection, Click Fix connection and sign in again, completing MFA)
2. Let's use a service account - For corporate‑wide flows, migrate ownership to a dedicated service account licensed for Power Platform.
3. If you are under a solution then update the connection references in the solution.
I am sure some clues I tried to give. If these clues help to resolve the issue brought you by here, please don't forget to check the box Does this answer your question? At the same time, I am pretty sure you have liked the response!