Changing Azure B2C Send-SMS and Verify-SMS OTP verification expiration value from 3 minutes to custom time

Ronnie Kapoor 96 Reputation points
2021-06-29T05:56:43.627+00:00

Hi Team,

I am using https://learn.microsoft.com/en-us/azure/active-directory-b2c/display-controls and using send sms and verify sms (https://learn.microsoft.com/en-us/azure/active-directory-b2c/multi-factor-auth-technical-profile) steps to send and verify OTP for various operations such as forgot password and Login..I have noticed that the default OTP/Code expiration time is 3 minutes and there is no way i can override this time limit.

Is there a way to override this time limit to custom time limit ?

Microsoft Security | Microsoft Entra | Microsoft Entra External ID
{count} votes

1 answer

Sort by: Most helpful
  1. James Hamil 27,221 Reputation points Microsoft Employee Moderator
    2021-06-30T20:17:05.513+00:00

    Hi @Ronnie Kapoor , you can accomplish this by using a custom policy. Use the "CodeExpirationInSeconds" tag to change the time. Please let me know if you have any questions!

    If this answer helped you please mark it as "Verified" so other users may reference it.

    Thank you,
    James


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.