Disable users from changing password in Office 365

Nicole Pabon 51 Reputation points
2022-10-31T19:51:04.723+00:00

I want to take away the ability for users to change their email password in Office 365. How can I achieve this? I would at least like to create a password policy requirement.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,328 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Vasil Michev 103.6K Reputation points MVP
    2022-11-01T07:59:18.647+00:00

    You cannot prevent users from changing their own passwords in Office 365/Azure AD. As for enforcing policy requirements, refer to this article: https://learn.microsoft.com/en-us/microsoft-365/admin/manage/set-password-expiration-policy?view=o365-worldwide
    Apart from that, you can also configure a "banned password" list: https://learn.microsoft.com/en-us/azure/active-directory/authentication/tutorial-configure-custom-password-protection
    If you want to exert more control over the process, consider configuring redirecting your auth process to on-premises and/or implementing the password writeback feature, which in turn allows you to enforce the on-premises AD password policies: https://learn.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-sspr-writeback

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.