![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 90%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHS%3C/text%3E%3C/svg%3E)
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
836 questions
Hi @Harneet Singh · Thank you for reaching out.
Azure AD password policies are by default applied to all user accounts that are created directly in Azure AD. Some of these password policy settings can NOT be modified e.g., Password reset history, Password change history, Password restrictions, Characters not allowed, Characters allowed.
The only settings that can be modified are: Password expiry, Password expiry notification, Password expiry duration.
You can also consider configuring Custom banned passwords by navigating to:
Azure Active Directory > Security > Authentication > Password protection > Set the option for Enforce custom list to Yes and add strings to the Custom banned password list, as highlighted below:
Read more: Azure AD password policies
-----------------------------------------------------------------------------------------------------------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.
