Share via

Password reset from the Azure AD B2C portal not working

Selvin Pudusserry 0 Reputation points
2025-01-10T06:47:05.93+00:00

Hello MS Community, We are using Azure AD B2C for our customers. When you go to a specific user's profile, you can see a password reset button. I have attached a screenshot of the same. When I click on that password reset button, it generates a temporary password for the user. When the user enters their email and temporary password, they get an error saying either "The username or password is invalid" or "The password has expired". I have attached a screenshot of the same. Why is this happening? How can I get the password reset button to work? Could you please assist? For context, we use the custom policies that are part of the identity experience framework.
User's image

User's image

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,835 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Navya 14,220 Reputation points Microsoft Vendor
    2025-01-10T12:13:49.5033333+00:00

    Hi @Selvin Pudusserry

    Thank you for posting this in Microsoft Q&A.

    I understand that you are trying to reset the password from the Azure AD B2C portal. However, when attempting to use the temporary password in the sign-in user flow, you are encountering the error message "The username or password is invalid" or "The password has expired."

    When you reset the password using an admin account from the Azure AD B2C portal, a temporary password is generated. This password is marked as expired and requires the user to set a new one. This is expected behavior as Azure AD B2C sign-in policies don't support signing in with a temporary password by default and instead use a different mechanism for resetting passwords (e.g., Password Reset User Flows or Custom Policies).

    To allow users to perform a self-service password reset, please use the Password Reset flow: https://zcusa.951200.xyz/en-us/azure/active-directory-b2c/add-password-reset-policy?pivots=b2c-user-flow

    Additionally, you can enable the Force Password Reset User Flow here: https://docs.microsoft.com/en-us/azure/active-directory-b2c/force-password-reset?pivots=b2c-user-flow

    Hope this helps. Do let us know if you any further queries.

    Thanks,

    Navya.

    If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.