What causes AADSTS50132?

User's password expired since the SSO session/cookie was issued. Password was recently changed (self-service reset or admin reset) invalidating existing sessions. Conditional Access or session lifetime policy forced a re-evaluation of the SSO artifact. Stale persistent browser cookie or cached refresh token after a credential change. Account requires MFA re-registration or risk-based re-authentication after the password change

How do I fix AADSTS50132?

Sign out fully from the affected app (Power BI Service, Fabric, Office portal) and close all browser tabs to drop the stale SSO cookie. Sign in again at https://login.microsoftonline.com with the current password — if the password is expired, complete the forced password change first. Clear the Microsoft Entra ID / Azure AD cookies (or use a private/incognito window) so the client doesn't replay the expired SSO artifact. For Power BI Desktop or gateway data sources: open File > Options and settings > Data source settings > Global permissions, clear the saved organizational account, and re-enter credentials. If it persists, ask an Entra ID admin to check the user's sign-in logs in the Entra admin center for the matching correlation ID and verify there is no Conditional Access block or revoked session

Low severityauthentication

Power BI Error:
AADSTS50132

What does this error mean?

The SSO artifact (session cookie/token) is no longer valid because the user's password expired or was recently changed.

Common causes

1User's password expired since the SSO session/cookie was issued
2Password was recently changed (self-service reset or admin reset) invalidating existing sessions
3Conditional Access or session lifetime policy forced a re-evaluation of the SSO artifact
4Stale persistent browser cookie or cached refresh token after a credential change
5Account requires MFA re-registration or risk-based re-authentication after the password change

How to fix it

1Sign out fully from the affected app (Power BI Service, Fabric, Office portal) and close all browser tabs to drop the stale SSO cookie
2Sign in again at https://login.microsoftonline.com with the current password — if the password is expired, complete the forced password change first
3Clear the Microsoft Entra ID / Azure AD cookies (or use a private/incognito window) so the client doesn't replay the expired SSO artifact
4For Power BI Desktop or gateway data sources: open File > Options and settings > Data source settings > Global permissions, clear the saved organizational account, and re-enter credentials
5If it persists, ask an Entra ID admin to check the user's sign-in logs in the Entra admin center for the matching correlation ID and verify there is no Conditional Access block or revoked session

Frequently asked questions

What does AADSTS50132 mean?

The session isn't valid due to password

How do I fix this error?

Check your application registration, token configuration, and user permissions in the Azure portal. Review Conditional Access policies if the error is policy-related.

Source · learn.microsoft.com/en-us/entra/identity-platform/reference-error-codes#aadsts-error-codes