0xCAA70004 Severity: High Token could not be refreshed
Teams cannot refresh the auth token and reports 0xCAA70004. A clean sign-in reset usually fixes it.
Affected systems
Symptoms
- Teams reports 0xCAA70004 on launch
- Sign-in is rejected even though the password is correct
- MFA prompt appears repeatedly
- Other Microsoft apps show similar behaviour
Possible causes
- Expired refresh token in cache
- Tenant MFA settings changed
- Corrupt WebView2 component on Windows
- Corrupt Keychain entry on macOS
Solutions
1.Reset stored credentials
Windows
-
Open Credential Manager (Run, control.exe /name Microsoft.CredentialManager).
-
Delete every entry with 'Microsoft', 'msTeams', or 'OfficeApps' in the name.
-
Restart Teams and sign in fresh.
macOS
-
Open Keychain Access (Spotlight: Keychain Access).
-
Search for 'Microsoft' and 'Office', delete all matches.
-
Restart Teams and sign in fresh.
2.Clear the Teams cache fully
-
Quit Teams so no process remains.
-
Delete the cache.
%localappdata%\Packages\MSTeams_8wekyb3d8bbwe\LocalCache~/Library/Group Containers/UBF8T346G9.com.microsoft.teams -
Launch Teams and sign in fresh.
3.Repair WebView2 (Windows only)
Windows
-
Open 'Apps and Features' in Windows Settings.
-
Find 'Microsoft Edge WebView2 Runtime'.
-
Click 'Modify', then 'Repair'.
-
Reboot.
Useful links
- mysignins.microsoft.com - sign out active sessions
- myaccount.microsoft.com - account overview
- Microsoft Learn - WebView2 Troubleshooting - if Repair does not work
Background
Refresh tokens are long-lived (typically 90 days) but are revoked immediately after any security event (password change, MFA reset, admin intervention). When your token dies before its expiry date, Teams sees it as 0xCAA70004. A full re-sign-in fetches a fresh token.