This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 25%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
I have a situation where the user's cannot reset their password because of delayed email delivery on their side so the verification code expires. I have found that the code expires in 5 minutes and as per some answers on stack overflow, though nothing in the official docs, this cannot be modified and is a hard limit.
So I tried to reset the password manually using the azure portal's B2C Users view, which does not work either because what seems to happen is that the force password reset flag is updated to true, thus preventing the user from performing a sign-in at all, to elaborate a bit more what we use are custom policies and we have not taken into account the force password reset flow as the assumption was that the Forgot password flow is sufficient (however due to the fixed, unmodifiable limit of 5 minutes it is not)
I have tried a script using GraphAPI which puts the forcePasswordReset flag to false, leaving the user with the auto-generated password, however this does not work either I get a message that the permissions are insufficient to perform this operation, however I am not sure which permissions as I am in the global administrator role. Furthermore I have discovered that the B2C tenant does not allow this operation (PATCH beta/users/{user-id}), but again no official docs for this, just some answers on stack overflow.
Question that I have is:
Is there any way for an administrator to reset a user's password without introducing new flows or modifying existing ones? Either by invoking GraphAPI or by using the azure portal's B2C users administration (which seems useless at the moment as it does not provide a basic user identity administration task such as resetting a password)
Hello @Milorad Savcic ,
Hope you got a chance to review the action plan suggested below. Please do let me know if you have any queries in the comments section. If you don't have any further queries and the suggestion works as per your business need. Please "Accept the answer", "Upvote" and rate your experience. This will help us and others in the community as well.
Thanks,
Akshay Kaushik
Hello @Milorad Savcic ,
Thank you for posting your query on Microsoft Q&A.
Please do let me know if you have any further queries in the comments section.
Thanks,
Akshay Kaushik
Please "Accept the answer", "Upvote" and rate your experience if the suggestion works as per your business need. This will help us and others in the community as well.