Set up a password expiration policy for a set of users in hybrid environment

J.Aeby 0 Points de réputation
2024-11-14T07:28:52.8833333+00:00

Hi,

I need your help with implementing a password expiration policy for one of my customers. Here's the situation:

  • The customer has Entra ID and an on-prem Active Directory (synced with Azure AD Connect).
  • All Users have Microsoft Business Premium licenses.
  • All Devices are managed by Intune.

They want passwords to expire every 180 days.

The challenge is that my customer want to apply this policy only to a set of users within his tenant.

How can I enforce this password expiration policy only for a set of users without affecting the others ?

The global idea is that users will be prompted every 180 days to change their password by the usual M365 pop-up.

Note : They don't use on-premise resources, On-Prem Active Directory is here due to history..

Thanks in advance for your advice !

Windows Server
Windows Server
Famille de systèmes d’exploitation de serveur Microsoft qui prennent en charge la gestion, le stockage des données, les applications et les communications au niveau de l’entreprise.
74 questions
Microsoft Intune
Microsoft Intune
Solution de gestion basée sur le cloud Microsoft qui offre des fonctionnalités de gestion des périphériques mobiles, de gestion des applications mobiles et de gestion des PC.
26 questions
0 commentaires Aucun commentaire
{count} votes

1 réponse

Trier par : Le plus utile
  1. Crystal-MSFT 50,676 Points de réputation Fournisseur Microsoft
    2024-11-15T02:17:26.03+00:00

    @J.Aeby, Thanks for posting in Q&A. Based on my researching, the Microsoft Entra password policies set is for org. If you want to change it for a set of users, you can use Update-MgUser to configure password expire for users. Here is a link with more details:

    https://zcusa.951200.xyz/en-us/entra/identity/authentication/concept-sspr-policy

    Hope the above information can help.


    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 commentaires Aucun commentaire

Votre réponse

Les réponses peuvent être marquées comme Réponses acceptées par l’auteur de la question, ce qui permet aux utilisateurs de connaître la réponse qui a résolu le problème de l’auteur.