question

TonyL-9053 avatar image
0 Votes"
TonyL-9053 asked ·

Is there a default time period before users are asked to verify security details again?

We have some users who are registered for self service password reset and MFA via conditional access.

Recently a few users have been prompted to verify their security details whilst logging in, these users had registered for sspr and mfa via the combined registration some months ago.

Is it expected behaviour for users to be prompted to verify their security information every few months? Is this a default setting?

azure-active-directory
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

KAREDD-MSFT avatar image
0 Votes"
KAREDD-MSFT answered ·

Hi @TonyL-9053,

This is actually controlled by a setting "Number of days before users are asked to re-confirm their authentication data". You can manage this setting from the Azure Portal > Azure AD > Password Reset > Registration.

Ref: https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-sspr-deployment#registration-settings

You can set this value to a maximum of 730 days (2 years). If you set it 0 days, users will never be prompted to re-register.

· 1 · Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Thank you very much, that was exactly what I was looking for.


0 Votes 0 · ·