What causes AADSTS700082?

The user or service account didn't sign in to the application for longer than the tenant's refresh token inactivity lifetime (default 90 days). A scheduled Power BI dataset, dataflow or Fabric pipeline runs under a user account that hasn't logged in interactively for an extended period. Conditional Access or token lifetime policies in Entra ID shortened the inactive token window below the default. The refresh token was issued before a tenant-wide credential revocation, password reset, or MFA enrollment event. A service identity is being used where a managed identity or service principal with client credentials should have been configured instead

How do I fix AADSTS700082?

Have the affected user (or dataset/gateway owner) sign in interactively to Power BI, Fabric or the relevant app to mint a new refresh token. In Power BI Service, open the dataset/dataflow → Settings → Data source credentials and click 'Edit credentials' to re-authenticate with OAuth2. For scheduled refreshes that fail repeatedly, replace the user-account binding with a service principal (Power BI: tenant setting 'Allow service principals to use Power BI APIs') so tokens aren't tied to user inactivity. Review Entra ID → Security → Conditional Access and Token lifetime policies; confirm the 'Refresh token max inactive time' isn't shorter than your refresh cadence. If running in ADF, Synapse, or Fabric pipelines, switch linked services from OAuth user credentials to a Managed Identity or service principal to eliminate inactivity expiry entirely

High severityauthentication

Power BI Error:
AADSTS700082

What does this error mean?

The refresh token expired because the user or service principal didn't use the application within the inactivity window.

Common causes

1The user or service account didn't sign in to the application for longer than the tenant's refresh token inactivity lifetime (default 90 days)
2A scheduled Power BI dataset, dataflow or Fabric pipeline runs under a user account that hasn't logged in interactively for an extended period
3Conditional Access or token lifetime policies in Entra ID shortened the inactive token window below the default
4The refresh token was issued before a tenant-wide credential revocation, password reset, or MFA enrollment event
5A service identity is being used where a managed identity or service principal with client credentials should have been configured instead

How to fix it

1Have the affected user (or dataset/gateway owner) sign in interactively to Power BI, Fabric or the relevant app to mint a new refresh token
2In Power BI Service, open the dataset/dataflow → Settings → Data source credentials and click 'Edit credentials' to re-authenticate with OAuth2
3For scheduled refreshes that fail repeatedly, replace the user-account binding with a service principal (Power BI: tenant setting 'Allow service principals to use Power BI APIs') so tokens aren't tied to user inactivity
4Review Entra ID → Security → Conditional Access and Token lifetime policies; confirm the 'Refresh token max inactive time' isn't shorter than your refresh cadence
5If running in ADF, Synapse, or Fabric pipelines, switch linked services from OAuth user credentials to a Managed Identity or service principal to eliminate inactivity expiry entirely

Frequently asked questions

What does AADSTS700082 mean?

The refresh token has expired due to inactivity. The token was issued on {issueDate} and was inactive for {time}. Expected part of the token lifecycle - the user went an extended period of time withou

How do I fix this error?

Check your application registration, token configuration, and user permissions in the Azure portal. Review Conditional Access policies if the error is policy-related.

Source · learn.microsoft.com/en-us/entra/identity-platform/reference-error-codes#aadsts-error-codes