Hey everyone! I'm diving into Azure Entra External ID to use it as an identity provider for my web app. I really need to understand how to manage the password policy, especially for password resets. Unfortunately, I can't find clear guidelines in the documentation. If anyone has experience with this, could you point me in the right direction on setting password complexity and related policies? I'd really appreciate the help! Thanks!
2 Answers
You might want to check out the Entra documentation for password policies. A lot of what's missing in the specific Entra External ID docs can actually be found in the general Entra resources since they share the same foundation. However, keep in mind that you currently can’t set custom password complexity rules in Entra, similar to how it works for workforce tenants. It's pretty fixed as is.
Thanks for the info! I suspected that password customization might be limited. While the default complexity is decent as mentioned in the docs, it’s frustrating for tighter security needs. I'm considering looking into custom authentication extensions to create tailored rules. Hope it works out!
That could be a solid approach! Custom authentication extensions might give you that flexibility. Keep us posted on what you find!