Hi All,

Greetings for the day!!!

Today bit different topic. Regarding changes required in Power Automate after enabling the MFA

Background :

• As one of the security consideration in our Tenant we have enabled Multi Factor Authentication (MFA)
• Few of our Power Automates are written using individual connection rather service account
• As we have enabled MFA for users, our Power Automates which were using individual connection are stopped working

So in this article we will discuss what errors exactly happened, solution and best practice

Details :

• Authentication error for connections which are using individual connections as shown in below fig
• We need to re-authenticate the connections

• If we proceed and create Power Automate we will not get SharePoint details like “Site Address” as shown in below fig

• We will not get SharePoint details because of connection failed – Invalid connection
• All our connections will be invalid
• Please have a look at following fig – error regarding Invalid connection

• All our existing flows will be suspended – modified column value will be – “Activity suspended” as shown in below fig

• We could resume “Activity suspended” flows by turning them on using “Turn on” as

• Though we “Turn on” the flow, If we didn’t sign in with the credentials we still have error as

Error from token exchange: Runtime call was blocked because connection has error status: Enabled| Error, and sharepointonline is in the block list. Connection errors: [ParameterName: token, Error: Code: Unauthorized, Message: ‘Failed to refresh access token for service: sharepointonlinecertificatev2. Correlation Id=49367257-aead-47a4-aa58-e2296a7abc51, UTC TimeStamp=7/5/2022 4:56:14 AM, Error: Failed to acquire token from AAD: {“error”:”interaction_required”,”error_description”:”AADSTS50076: Due to a configuration change made by your administrator, or because you moved to a new location, you must use multi-factor authentication to access ‘00000003-0000-0000-c000-000000000000′.\r\nTrace ID: f7a1ebba-3615-4b9f-aa8f-11f93c735a01\r\nCorrelation ID: 8a9ee831-be31-4624-9d69-caf9612587cd\r\nTimestamp: 2022-07-05 04:56:14Z”,”error_codes”:[50076],”timestamp”:”2022-07-05 04:56:14Z”,”trace_id”:”f7a1ebba-3615-4b9f-aa8f-11f93c735a01″,”correlation_id”:”8a9ee831-be31-4624-9d69-caf9612587cd”,”error_uri”:”https://login.windows.net/error?code=50076″,”suberror”:”basic_action”}’]

Solution / Approach :

Re-Sign with credentials – reauthenticate all the connections used or create new connections

Best Practice :

• Use service account for implementing Power Automates rather using individual account for connections

Thanks for reading the article !!! Please feel free to discuss in case any issues / suggestions / thoughts / questions

HAVE A GREAT TIME AHEAD !!!