SOLVED

Password policy change without prompt for password change on Mac

Occasional Reader

Is there a way to change the existing password policy (Number of days until password expires from value XX to value 0) without prompting all Mac users to change their password?

 

With Jamf MDM there is the possibility to deactivate the password change request.

Is this also possible with Intune?

 

It is very uncomfortable if every Mac user has to change their password when a change is made to an existing policy.

 

1 Reply
best response confirmed by Thrawnium06 (Occasional Reader)
Solution

@Thrawnium06 

 

I hate to be the bearer of bad new but this is not possible with Intune and 'local' password policies, it is even stated explicitly here: device-restrictions-macos  and can happen after a upgrade of macOS. There is no trick or anything you can utilise to do this any other way as long as you use the local password policy. 

 

I think it would be better to start using Platform SSO:https://techcommunity.microsoft.com/t5/microsoft-entra-blog/coming-soon-platform-sso-for-macos/ba-p/...  - users can use there Entra Password but there are also possibilities to go Passwordless an ditch the whole problem with local password changes. I think this is the way to go.

 

------

Please click Mark as Best Response & Like if my post helped you to solve your issue.

This will help others to find the correct solution easily. It also closes the item.

If the post was useful in other ways, please consider giving it Like.

1 best response

Accepted Solutions
best response confirmed by Thrawnium06 (Occasional Reader)
Solution

@Thrawnium06 

 

I hate to be the bearer of bad new but this is not possible with Intune and 'local' password policies, it is even stated explicitly here: device-restrictions-macos  and can happen after a upgrade of macOS. There is no trick or anything you can utilise to do this any other way as long as you use the local password policy. 

 

I think it would be better to start using Platform SSO:https://techcommunity.microsoft.com/t5/microsoft-entra-blog/coming-soon-platform-sso-for-macos/ba-p/...  - users can use there Entra Password but there are also possibilities to go Passwordless an ditch the whole problem with local password changes. I think this is the way to go.

 

------

Please click Mark as Best Response & Like if my post helped you to solve your issue.

This will help others to find the correct solution easily. It also closes the item.

If the post was useful in other ways, please consider giving it Like.

View solution in original post