Is it possible to create an approval workflow for Azure AD password resets using Logic Apps or Power Automate?

Nathan Valentine 66 Reputation points
2022-09-14T18:49:08.267+00:00

I'd like to create a workflow (perhaps using Power Automate/Azure Logic Apps) to require manager approval before a password reset attempt is completed for a user by an identity admin in Azure AD. I'm not finding anything related to such a workflow in a browser search (I just keep running into Self-Service Password Reset ... the users aren't savvy enough to manage this on their own). Management is concerned about identity admins resetting user passwords through a simple phone call (they're worried about the security ... assuming any bad actor could call to have a password reset in behalf of a user). There's definitely room for an MFA conversation here, but the client would be set at ease if there was an approval-based workflow in place to authorize password resets. Is there a way of accomplishing this sort of workflow using the available tools in Azure or M365? Thank you!

Azure Logic Apps
Azure Logic Apps
An Azure service that automates the access and use of data across clouds without writing code.
3,094 questions
0 comments No comments
{count} votes

Accepted answer
  1. Maxim Sergeev 6,571 Reputation points Microsoft Employee
    2022-09-15T00:44:55.747+00:00

    Hi there,

    Yes, this is achievable. Did you see an example with Power Automate here?

    https://powerusers.microsoft.com/t5/General-Power-Automate/Http-request-Azure-AD-Change-password/td-p/894179

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.