What is the default Password Expiration Policy for Azure AD B2C (I am using Custom Policies) ? How can I set a password expiration policy period and what are the other Password Expiration policies by default ?

Ronnie Kapoor 96 Reputation points
2021-02-11T11:54:34.03+00:00

What is the default Password Expiration Policy for Azure AD B2C (I am using Custom Policies) ? How can I set a password expiration policy period and what are the other Password Expiration policies by default ?

Microsoft Security | Microsoft Entra | Microsoft Entra External ID
Microsoft Security | Microsoft Entra | Microsoft Entra ID
{count} votes

1 answer

Sort by: Most helpful
  1. James Hamil 27,221 Reputation points Microsoft Employee Moderator
    2021-02-11T21:35:42.437+00:00

    Hi @Ronnie Kapoor , taking from this thread:

    For B2C Local accounts:
    NOTE:Local accounts can only be created by sign-up or AAD Graph API. You cannot create it by clicking New users in AAD which is a B2C tenant.

    There is no password expiration policy for local accounts by default. Azure AD B2C's sign-up, sign-up or sign-in and password reset policies use the "strong" password strength and don't expire any passwords for local accounts in Azure AD B2C.

    Creating an expiration policy in B2C doesn't necessarily enhance security so the feature is not easily available. You can set a complexity and length though. There is more information on why here.

    I hope this helps! Please let me know if you have any more questions.

    Best,
    James


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.