Forum Discussion

BeagleMarauder's avatar
BeagleMarauder
Copper Contributor
Aug 24, 2021

AAD Generated Passwords & Custom Policies

Hello,

 

I have a query relating to password policies and machine-generated passwords through AAD. We have recently rolled out AAD Password Protection, we're utilising defined password policies and specific password expiration. However, I wanted to know whether when a user is created and the AAD Random Password Generator is used whether or not it is assessed against our policies, otherwise we'd be essentially provisioning an account with a weaker security profile until the user is forced to reset the password at initial login. 

 

Thanks.

  • When you enable AAD password protection you are now using a combination of onprem and azure ad password policy. Also "AAD random password generator" is not a feature of AAD password protection. When you create a new user account , the password will be checked for compliance in Azure AD. If the password doesn't meet compliance the password will be rejected.

Resources