Custom Password Policies targeted to Groups

Harneet Singh 1 Reputation point

Hi Folks,

I want to setup custom password policies for a group policy? We don't have any on-premises server. We have Azure AD.

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,442 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
546 questions
No comments
{count} votes

1 answer

Sort by: Most helpful
  1. AmanpreetSingh-MSFT 55,366 Reputation points

    Hi @Harneet Singh · Thank you for reaching out.

    Azure AD password policies are by default applied to all user accounts that are created directly in Azure AD. Some of these password policy settings can NOT be modified e.g., Password reset history, Password change history, Password restrictions, Characters not allowed, Characters allowed.

    The only settings that can be modified are: Password expiry, Password expiry notification, Password expiry duration.

    You can also consider configuring Custom banned passwords by navigating to:

    Azure Active Directory > Security > Authentication > Password protection > Set the option for Enforce custom list to Yes and add strings to the Custom banned password list, as highlighted below:


    Read more: Azure AD password policies


    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    1 person found this answer helpful.