Conditional access policy or User risk policy set to force password at high risk doesnt work

AB123 171 Reputation points
2022-11-10T10:08:20.237+00:00

Hi all,

When setting Conditional access policy or User risk policy set to force password at high risk doesn't work instead I get a blocked windows on users. 

259101-screenshot-2022-11-09-at-15852-pm.png

I have set SSPR too and I think this is a requirement

What am I doing wrong? 

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,738 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
604 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
823 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Andy David - MVP 121K Reputation points MVP
    2022-11-10T12:54:06.567+00:00

    Are these guest users then? If so then that makes sense. You can't force a guest user to change their password, the admin on their own tenant has to do that

    https://learn.microsoft.com/en-us/azure/active-directory/identity-protection/concept-identity-protection-b2b#limitations-of-identity-protection-for-b2b-collaboration-users

    259067-image.png