When a users email address is part of multiple Azure active directories, which password policy does it enforce to log in?

Thomas W 20 Reputation points
2024-01-10T19:11:07.02+00:00

I have a web application that allows users to log in using their Azure AD account. Let's say that ******@contractor.com is a part of their companies active directory and the password policy is weak. For example let's say they only require 5 characters. This contractor gets assigned to work at Company A, and Company A requires a 15 character password to log in. When this user goes to log into my web application, will it use the 5 character password or the 15 character one? User's image

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
23,151 questions
0 comments No comments
{count} votes

Accepted answer
  1. Azar 26,180 Reputation points MVP
    2024-01-10T20:39:01.3233333+00:00

    Hi
    Thomas Wardyniec

    Usually each Azure AD tenant operates independently in terms of password policies.

    In your scenario , If the user logs in with credentials from their company's Azure AD, the policy from that Azure AD is applied.

    If the user logs in with credentials from Company A's Azure AD, the policy from Company A's Azure AD is applied.

    Hope this helps kindly accept the answer if it did thanks much.


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.