And here's what it looks like on your Microsoft account (Outlook, Xbox, OneDrive…):
Smart Password Lockout Of course, you already know that when our security system detects a bad guy trying to guess your password online, we will lock out the account. What you probably don't know is that we do lots of work to make sure that they only lock themselves out! Our systems are designed for determining the risk associated with a specific login session. Using this, we can apply lockout semantics only to the folks who aren't you. The only way *you* get locked out is if someone is guessing your passwords on your own machine or network. If you are locked out in Azure AD, it looks like this:
And in Microsoft account, it looks like this:
To see how effective this is at saving good users from disruption, check this out – more than half the time, we keep hackers from disrupting you or your users:
Those are just a few of the things we do on behalf of Azure AD Admins. If you are an Azure AD Admin, the most important thing you can do – as Robyn points out in the doc – is to make sure your users are all configured correctly for Azure MFA or better yet, start using something like Windows Passport, which is inherently multi-factor and will soon help get us (and you!) out of the password business altogether! Enjoy our password guidance – and be sure to let Robyn ( @robynhicock ) know what you think! Until next time – be safe! -Alex (@alex_t_weinert )
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.