This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 62%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
Will be moving my users to AD cloud and disconnecting the AAD connect
How can I set the password complexity to meet the following requirements
Minimum characters 12
Cannot contain login name or name of the user
Contains alphanumeric characters
Max pwd age 90 days
Min pwd age 24hrs
History - last 15 passwords
Hello @Chopra ,
Thanks for reaching out.
You can't customize Azure AD default password policy. Some of these password policy settings can't be modified, though you can configure custom banned passwords for Azure AD password protection or account lockout parameters
To know more about Azure AD password policies, refer.
Hope this helps.
------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.
Okay, so now if I remove azure ad connect
The default age is 60 days
Will my end users require to rest their password immediately?
How does the 60days affect end users?
Default value Password expiry duration value is 90 days and Password expiry notification default value is 14 days (before password expires). In this case the users receive notification 14 days prior to that expiry.
As @Vasil Michev mentioned "Password expiry duration" & "Password expiry notification" values is configurable at domain level and same steps has mentioned above article.
The only thing you can modify is the max password age and notification window, this is done via the Set-MsolPasswordPolicy cmdlet on a per-domain basis. If you want more control over this, or to enforce your AD policies, consider using federation or pass-trough authentication.
Could you share the article to refer?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 34%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
You shouldn't.
Don't focus to much on making passwords complex because this will not increase security. Focus on: