Best practice for resetting a user's password remotely, and verifying identity.

David Edgar 25 Reputation points
2023-10-24T19:42:03.93+00:00

I'm looking for what I think is a simple answer, but can't find the tool in Entra to do so. I want to reset a password for a remote user, but want to verify their identity. How do I provide this type of service by only using Microsoft Entra? Obviously I can reset a password, and force a password change, but I'm just looking for a simple way to verify the identity of someone.

Can I push a temp code to MFA to verify they have the MFA device? How does this typically get done everywhere?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,185 questions
0 comments No comments
{count} vote

Accepted answer
  1. Andy David - MVP 143.8K Reputation points MVP
    2023-10-24T19:49:45.1766667+00:00

    There is no push mechanism in Azure to do that like DUO.

    Its a much requested feature:

    https://feedback.azure.com/d365community/idea/97898804-e825-ec11-b6e6-000d3a4f06a4

    Otherwise, you would need to build your own policies for verification. I would personally like to see a CA policy that can target SSPR itself and require device compliance, etc.

    2 people found this answer helpful.

0 additional answers

Sort by: Most helpful