Share via

Azure custom passwords

Andres Esteban 156 Reputation points
2024-11-18T08:55:06.8833333+00:00

For the management of my users in Azure Microsoft Entra ID I need to set a series of characteristics to the passwords of my users: length, allowed characters, expiration, not being able to use x previous passwords, etc. where can I do this or how can I do it?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,266 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Ankush Raj 150 Reputation points Microsoft Employee
    2024-11-18T10:40:14.4166667+00:00

    Hi Andres,

    I'm Ankush from Microsoft and I'll be happy to help you out.

    As per my understanding, you want to create a custom policy having different parameters regarding password specifications for the users.

    Could you please let me know whether these users are azure native, or they are synced from on-premises environment?

  2. Bhasker Donthu 765 Reputation points Microsoft Vendor
    2024-11-19T11:43:49.6866667+00:00

    Hello @Andres Esteban,

    Thank you for posting your query on Microsoft Q&A.

    To manage password policies for your users in Microsoft Entra ID (formerly Azure AD). By default, Microsoft Entra ID enforces a minimum password length of 8 characters and a maximum of 256 characters. Passwords must include at least three of the following: uppercase letters, lowercase letters, numbers, and symbols

    For Password Expiration:

    You can set password expiration policies through the Microsoft 365 Admin Centre:

    ·       Go to Settings > Security & Privacy > Password expiration policy.

    ·       Here, you can disable the option to set passwords to never expire or configure the expiration period

    For Password Protection:

    Microsoft Entra ID also includes password protection features that prevent users from using weak or commonly used passwords. You can customize the list of banned passwords specific to your organization

     User's image

    For more advanced password policies, such as requiring special complexity rules:

    • On-Premises Active Directory: Use Group Policy to configure custom password settings, synced with Microsoft Entra ID.
    • Azure Intune: Create and enforce custom password policies through Intune.

    For more detailed on any specific part of this process, please refer below links https://learn.microsoft.com/en-us/entra/identity/authentication/concept-password-ban-bad-combined-policy https://learn.microsoft.com/en-us/entra/identity/domain-services/password-policy

    I hope this information is helpful. Please feel free to reach out if you have any further questions. If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.