Change coming to the format of IP addresses containing IPV4 embedded in IPV6 addresses within token claims
Starting from July 8th, 2024, the format of IP addresses containing IPv4 embedded in IPv6 within token claims will be changing, affecting the 'ipaddr' claim in JWTs. The change impacts organizations that use custom applications dependent on the string format of this claim, requiring them to update their code. If there is no dependency on the string format, no action is needed. The Microsoft identity platform uses security tokens in the form of JSON Web Tokens (JWTs), containing claims that relay information about the token subject, including the IP address of the user authenticating. One of these claims, 'ipaddr,' will be affected by the change, regarding certain IPv6 addresses containing IPv4 addresses. These addresses will appear only as IPV6 addresses when serialized, without the embedded IPv4 addresses. The change will impact both access tokens and id tokens, as the 'ipaddr' claim is included in both token types. It's worth noting that despite the string format change, the IP addresses will remain the same.
If your organization doesn't depend on custom applications or on the string format of the 'ipaddr' claim from the access token or id token, there should be no impact, and no action is required.
The post Change coming to the format of IP addresses containing IPV4 embedded in IPV6 addresses within token claims originally appeared on M365 Admin.
Published on:
Learn more
Related posts
WCF Authentication with Azure Active Directory by username and password using JWT(JSON Web Token)
Looking to incorporate Azure Active Directory (AAD) into your WCF authentication process? This tutorial explores how to accomplish just that b...
New Nested App Authentication for Office Add-ins: Legacy Exchange tokens off by default in October 2024
Announcing the public preview of Nested App Authentication (NAA) and that legacy Exchange user identity tokens and callback tokens will be tur...
IPv6 coming to Azure AD
Microsoft Azure Active Directory (Azure AD) is introducing IPv6 support to its suite of services. This will allow users to access Azure AD ser...
Update to Defender for Cloud Apps IP Addresses
Defender for Cloud Apps is updating its IP addresses for app connectors and third-party DLP integration. Starting from January 2nd, 2023, the ...
Update to Defender for Cloud Apps IP Addresses
Defender for Cloud Apps is making some changes to its IP addresses related to 'App connectors' and 'Third-party DLP integration', beginning No...
How to enable IPv4+IPv6 dual-stack feature on Service Fabric cluster
As the IPv4 addresses are already exhausted, more and more service providers and website hosts start using the IPv6 address on their server. A...
Episode 442 - Azure IP Services
This podcast episode highlights Azure IP services as the team catches up with Brian Lehr. The range of IP services available in Azure are disc...
What is JWT JSON Web Token?
If you've heard of JWT or JSON Web Tokens but are not sure what they are, this post provides a brief introduction. As per the open standard RF...
JWT JSON Web Tokens and Power Apps Portals
If you're pursuing a single sign-on (SSO) scenario using JSON Web Tokens (JWT) with Power Apps Portals to integrate with an external Web API, ...
Module 2: Access Tokens | Microsoft Graph Fundamentals for Beginners
If you're looking for an overview of access tokens in the context of Microsoft Graph, you've come to the right place. This video tutorial expl...