Forum Discussion

3 Replies

  • Bence_Weiszmann's avatar
    Bence_Weiszmann
    Copper Contributor
    Feb 16, 2026

    Hi,

     

    Unfortunately, there isn’t a native way to display your on-premises Active Directory password policy requirements on the SSPR page when using password writeback with Microsoft Entra ID.

     

    This is because the SSPR experience is cloud-based, and Entra ID does not read or expose the detailed password policy configuration from on-prem AD. When a user submits a new password, it is sent to on-premises AD via password writeback, and the domain controller performs the validation. If the password does not meet the policy, the user will see a generic error message, but the specific password requirements are not shown.

     

    Recommended approach:

     

    The most common solution is to use Company Branding in Entra ID to provide guidance to users. You can add custom text or a help link describing your password requirements.

     

    Steps:

     

    - Go to Entra admin center

    - Navigate to Entra ID > Company Branding

    - Edit your branding profile

    - Add password requirement guidance or a help link

     

    Alternatively, many organizations publish their password policy on an internal webpage and reference it in the branding or helpdesk documentation.

     

    This is expected behavior by design, and currently there is no built-in way to dynamically display on-prem AD password policy rules in the SSPR interface.

     

    Hope this helps.

     

    Best regards,

    Bence

     

    • StuartK73's avatar
      StuartK73
      Steel Contributor
      Feb 16, 2026

      Hi Buddy

       

      Thanks very much for this.

       

      Anyway, can you elaborate on "Add password requirement guidance or a help link"

       

      On which part of the edit Company branding do I put this?

       

       

      Info appreciated

       

      SK

      • Bence_Weiszmann's avatar
        Bence_Weiszmann
        Copper Contributor
        Feb 17, 2026

        Hi

         

        When you edit your Company Branding profile in Entra ID, the best place to put this information is in the Sign‑in page text field. This text is displayed on the SSPR page, so users will see your password rules before they try to reset their password.

        Path:
        Entra admin center → Entra ID → Company Branding → Edit → Sign‑in page text

        You can also optionally add a link to your full password policy under:

        • Custom support link / Helpdesk URL – this shows a “Need help?” link on the SSPR page

        or

        • Page background message – good for short reminders.

         

        Recommended:
        Put the password rules in Sign‑in page text, and add a link to your full policy using the Custom support link.

         

        Best regards,
        Bence