Password expiration notice in Outlook

Password expiration notifications in rich clients in Office 365

If you've read the Microsoft Support article: "Access Denied" error, or the user is repeatedly prompted for credentials, when the user tries to access an Office 365 resource from a rich client application, you will know that you must download and install the latest version of the Microsoft Online Services Sign-in Assistant to enable password expiry notification. However in the same article you may also have noticed the below paragraph:

For users of Office 365 rich client applications (However, this does not include Microsoft Outlook), a notification balloon is displayed on user's desktops 14 days before the 90-day password expiration time-out to notify users that they have to change their password. Users are prompted every day after that until the user changes his or her password

What about Outlook?

Office 365 customers using managed (OrgID Based) accounts will not know when passwords will expire (if enabled for expiration). Further, Outlook’s behavior when the password expires is to go into a disconnected state, without notifying the user of what the problem is or what is required to resolve it. Opening Outlook and providing an expired password will continually prompt the user just as if they had mistyped the password.

Two hotfixes can be downloaded here:

• Description of the Outlook 2007 hotfix package (Outlook-x-none.msp): August 28, 2012 - link
• Description of the Outlook 2010 hotfix package (Outlook-x-none.msp): August 28, 2012 - link

After the hotfix is installed, Office 365 users who use Outlook receive a pop-up message in the notification area on the right side of the taskbar if their password is about to expire in a certain time period. The time period is set by administrators (default is 14 days).

For Office 365 users whose passwords have already expired, Outlook displays the following message to notify the user:

In either scenario, Outlook provides a URL for Office 365 users to update their passwords through their web browser. When a user clicks the link, he or she is redirected to the Office 365 portal to update his or her password..

See this Support article for more.
 
See also:

• Never forget to reset your Office 365 password again
• Notice the password expiration notification

Comments

• Anonymous
  January 01, 2003
  @Neko308: Yes - OrigID is the Office 365 security system (authentication service) based off the LiveID technologies - Yes @Mr Me: Office 365 users.

• Anonymous
  January 01, 2003
  What password change page?  portal.microsoftonline.com?  What is OrgID?

• Anonymous
  January 01, 2003
  Also, will Outlook notify users every day until expiration?

• Anonymous
  May 09, 2012
  Is this for all users of Outlook or just 365 Users with Outlook?

• Anonymous
  May 23, 2012
  Hi Jesper, That is a shame as I have users that use Outlook Anyhwere that are not on the domain and would love this feaure. Another plus for O365 and another minus for on-premise Exchange :( :(

• Anonymous
  February 12, 2013
  Will be able to get an email notification the mail before expiry. But where as in exchange we get an email alert .

• Anonymous
  April 11, 2013
  First off, to be clear, I don't use O365.  We use Exchange 2010 and Outlook 2010.  I have many remote users who's only connectivity to the company is via the Outlook. They are not notified of impending password changes and when the account expires they cannot change the password.  For that they must contact IT.   Now tell me, how logical is that in a corporate environment?

• Anonymous
  April 02, 2014
  @Ken
  
  Do this for OWA - http://howdouc.blogspot.com/2010/08/exchange-2010-sp1-password-reset-tool.html
  

• Anonymous
  December 04, 2014
  I use Office 2013 and I still never get a notification

• Anonymous
  December 30, 2014
  OrgId is just username. Organization ID. This hotfix is for 365 users only. 2013 should prompt already. It could be that it's only Pro Plus that automatically prompts, but as far as I know, It's all 2013s that should already prompt.

• Anonymous
  December 30, 2014
  It's basically saying managed users (OrgId). I believe they mean that it might not work in a federated environment, as the passwords are managed locally at that point and this hotfix addresses communication between Office 365 and Outlook.

• Anonymous
  April 21, 2015
  The comment has been removed

• Anonymous
  January 04, 2016
  Is there a similar hotfix for Office 2013?

• Anonymous
  February 20, 2016
  Not that I'm counting but I just realized one of my blog posts actually is closing in on 100k views