Set User Password Expiration in Microsoft 365: Best Practices

Configuring User Password Expiration in Microsoft 365

Prev Question Next Question

Question

You have a Microsoft 365 subscription, and you are responsible for securing your Office 365 tenant.

You want to set your users passwords to expire after 90 days.

How should you configure this?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Correct Answer: A

You should navigate to Microsoft 365 admin center, Settings, Org settings, Security & Privacy and select Password expiration policy.

Microsoft 365 admin center 2 Search MhbCertTest iN ff} Home : Org settings Qo Users Vv & Devices uv 4 Groups Vv Services Security & privacy Organization profile Pp Pe Roles Resources v & Billing v Name T Description @ Support v Bing data collection Choose whether Bing can learn from your organization's search behavior to better its results. Settings a @ Doman Q Password expiration policy Set the password policy for all users in your organization. Search & intelligence acy profile Set the privacy statement of your organization. Org settings iniegeege? 2p _ Self-service password reset Let users reset their own forgotten passwords rather than contacting your organization's IT for help. r organization. Partner relationships Bed @ Setup Sharing Control access for people outside y

Set the “Days before passwords expire” to 90 days.

n policy Choose the number of days before a user's password will expire, and the number of days before they're notified about an upcoming password expiration. The policy applies to everyone in your organization. Password expira‘ Learn more about password policy recommendations @ Set user passwords to expire after a number of days Days before passwords expire * [20

Option B is incorrect.

This is where you customize a helpdesk link.

Option C is incorrect.

Azure security center is a hub for administering security status and threat protection.

Option D is incorrect.

This command removed password expiration.

To know more about configuring org wide password policy, please refer to the link below:

The correct answer for this question is A. In Microsoft 365 admin center-> Setting -> Org settings.

Here's a detailed explanation:

Microsoft 365 offers various security features to help you secure your Office 365 tenant. One of these features is the ability to set password policies for your users. By default, Microsoft 365 does not enforce password expiration policies for users, but you can configure this setting to meet your organization's security requirements.

To set your users' passwords to expire after 90 days, you need to configure the password expiration policy in the Microsoft 365 admin center. Follow these steps:

  1. Log in to the Microsoft 365 admin center using your admin credentials.
  2. Click on the "Settings" icon in the left navigation menu.
  3. Click on "Org settings" under the "Settings" section.
  4. Scroll down to the "Password expiration" section and click on "Edit".
  5. Check the "Set user passwords to expire after a number of days" checkbox.
  6. Set the number of days to 90.
  7. Click "Save" to save the changes.

Once you have configured the password expiration policy, users will be prompted to change their password when it expires. They will receive an email notification 14 days before the expiration date, and then another email notification on the day that their password expires.

Option B, "In Azure Active Directory - Password reset - Customization", is incorrect. This setting only allows you to customize the password reset experience for users and does not provide a way to set password expiration policies.

Option C, "In Azure Active Directory - Security - Security Center", is also incorrect. This setting provides security recommendations and alerts for your organization but does not offer password expiration policy configuration.

Option D, "In cloud shell - Get-AzureADUser -All $true | Set-AzureADUser -PasswordPolicies DisablePasswordExpiration.", is incorrect. This command disables the password expiration policy for all users in your Azure Active Directory, which is the opposite of what you want to achieve.

Prev Question Next Question