[REWST - TASK] M365: Invalidate User Sessions

This workflow serves as a critical security building block that forces sign-out of all active Microsoft 365 sessions for specified users through Microsoft Graph API calls. MSPs can leverage this automation in security incident response when accounts are potentially compromised, during employee offboarding processes to immediately revoke access, or as part of compliance-driven security protocols requiring session termination. Technically, the workflow validates input parameters, executes a Microsoft Graph API request to invalidate the user's sessions, and includes error handling to ensure reliable execution. This automation component integrates seamlessly with larger workflows like offboarding sequences or security incident response playbooks, enabling MSPs to implement immediate access revocation without manual intervention.

This workflow contains 5 tasks.

Inputs

user_id - string
- The GUID of the user in Azure/Entra

Outputs

automation_log: Standardized Rewst automation log
success: Boolean; States if workflow was successful.

Key tasks

invalidate_sessions: Validation/verification
check_inputs: Validation/verification
failure_catch: Core integration: noop

Jinja examples

Example 1

{{ CTX.user_id }}

Used in input parameter 'endpoint'

Example 2

{{ CTX.user_id|d }}

Used in transition condition

Previous[REWST - TASK] 365/On-Prem: Disable User Account Next[REWST - TASK] M365/On-Prem: Gather User Details

Last updated 21 days ago

Was this helpful?