Custom Password Policies targeted to Groups

Harneet Singh 1 Reputation point

Hi Folks,

I want to setup custom password policies for a group policy? We don't have any on-premises server. We have Azure AD.

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
806 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,869 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. AmanpreetSingh-MSFT 56,336 Reputation points

    Hi @Harneet Singh · Thank you for reaching out.

    Azure AD password policies are by default applied to all user accounts that are created directly in Azure AD. Some of these password policy settings can NOT be modified e.g., Password reset history, Password change history, Password restrictions, Characters not allowed, Characters allowed.

    The only settings that can be modified are: Password expiry, Password expiry notification, Password expiry duration.

    You can also consider configuring Custom banned passwords by navigating to:

    Azure Active Directory > Security > Authentication > Password protection > Set the option for Enforce custom list to Yes and add strings to the Custom banned password list, as highlighted below:


    Read more: Azure AD password policies


    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    1 person found this answer helpful.