Azure AD force password change at next logon

Skip Hofmann 341 Reputation points
2022-02-23T14:11:16.207+00:00

Hello
Looking for a method or script that will force users to change there password in Azure AD at next logon

Windows Server PowerShell
Windows Server PowerShell
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.PowerShell: A family of Microsoft task automation and configuration management frameworks consisting of a command-line shell and associated scripting language.
5,524 questions
Microsoft Entra
{count} votes

Accepted answer
  1. James Hamil 24,661 Reputation points Microsoft Employee
    2022-02-24T21:31:20.09+00:00

    Hi @Skip Hofmann , you can use the MS Graph to force password reset.

    To force reset the password on next login, update the account password profile using MS Graph Update user operation. The following example updates the password profile forceChangePasswordNextSignIn attribute to true, which forces the user to reset the password on next login.

    PATCH https://graph.microsoft.com/v1.0/users/<user-object-ID>  
    Content-type: application/json  
      
    {  
    "passwordProfile": {  
      "forceChangePasswordNextSignIn": true  
    }  
    

    Once the account password profile has been set, you must also configure force password reset flow, which is described here.

    If this answer helped you, please mark it as "Verified" so other users may reference it. Please let me know if you have any questions.

    Thank you,
    James

    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.