Authorization failed in new Microsoft Entra ID node

timautomation · January 31, 2025, 10:54am

Describe the problem/error/question

New Entra ID node credentials fails after couple of hours.
We can reconnect the credential, but in the night when it is schedules the token is expired.

The funny thing is that this only the case at the users endpoint, I have the same flow for groups (with the same credential) and that flow is running every night without problems.

What is the error message (if any)?

401

Please share your workflow

I shared screenshot, the flow is only the Entra Node with a webhook connected.

Information on your n8n setup

n8n version: 1.75.2
Database (default: SQLite): default
n8n EXECUTIONS_PROCESS setting (default: own, main): main
Running n8n via (Docker, npm, n8n cloud, desktop app): docker
Operating system: linux

timautomation · February 5, 2025, 2:15pm

Someone that can help please? or does anyone know this is a n8n bug?

timautomation · March 5, 2025, 9:09am

@n8n team anyone that can help me?

olucasfagundes · March 10, 2025, 9:46pm

I am facing the same issue with the Microsoft Entra Node, looks like the session it is only being keept by 1 hour.

timautomation · March 13, 2025, 2:46pm

Anyone of the n8n team that can help?

Goodfoodit · March 13, 2025, 5:46pm

hey, did you find a solution,

I am facing the same issue, it seems that the token is not refreshing…

Eric_T · March 13, 2025, 6:21pm

Have you added the offline scope?
Without that the refresh token will be missing and the refresh will fail.

timautomation · March 21, 2025, 8:08am

Well the thing is that the same credential works in the HTTP node and not in the Entra ID node.

And in the Microsoft Entra ID credential it is not possible to add scopes.

Grant_Moxom · April 10, 2025, 6:54am

Hey,

I’ve been looking into this issue too and am facing the same problem. This ONLY happens when using the Schedule trigger, and there is no refresh_token in a client_credentials authentication request.

Normally, n8n should fetch a new access token for each run. However, when using a Schedule trigger, it fails to refresh the token, so it expires after 1 hour.

Is there any way to force n8n to re-authenticate (i.e., request a fresh token) every time the workflow runs?

This seems to be a bug in the client_credentials flow handling in n8n.

Also, why does the client_credentials flow even ask for a user login when validating credentials? That shouldn’t be necessary and doesn’t actually do anything.

Note:
As a workaround, you could create an external scheduler that calls a Webhook instead of using the Schedule trigger directly in n8n. It’s a bit of a crappy solution, but it does work.

m.steen · May 9, 2025, 9:58am

Facing the same issue. Have not been able to resolve this

timautomation · May 9, 2025, 11:23am

The work around for this problem is simple, just use the HTTP node and just manually add the info.

But if there is a node for Entra ID is should work @n8n
It would be great if someone of the n8n team can respond to this as well.

N_Hafizi_Kamaruzzama · June 9, 2025, 9:37am

same issue here..any update / fix regarding the node??

system · September 7, 2025, 9:37am

This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.