Azure Active Directory Identity Protection - How to unblock users

With Azure Active Directory Identity Protection, you can configure policies to block users if the configured conditions are satisfied. Typically, a blocked user contacts help desk to become unblocked. This topics explains the steps you can perform to unblock a blocked user.

Determine the reason for blocking

As a first step to unblock a user, you need to determine the type of policy that has blocked the user because your next steps are depending on it. With Azure Active Directory Identity Protection, a user can be either blocked by a sign-in risk policy or a user risk policy.

You can get the type of policy that has blocked a user from the heading in the dialog that was presented to the user during a sign-in attempt:

Policy User dialog
Sign-in risk Blocked sign-in
User risk Blocked account

A user that is blocked by:

  • A sign-in risk policy is also known as suspicious sign-in
  • A user risk policy is also known as an account at risk

Unblocking suspicious sign-ins

To unblock a suspicious sign-in, you have the following options:

  1. Sign-in from a familiar location or device - A common reason for blocked suspicious sign-ins are sign-in attempts from unfamiliar locations or devices. Your users can quickly determine whether this is the blocking reason by trying to sign-in from a familiar location or device.
  2. Exclude from policy - If you think that the current configuration of your sign-in policy is causing issues for specific users, you can exclude the users from it. See Azure Active Directory Identity Protection for more details.
  3. Disable policy - If you think that your policy configuration is causing issues for all your users, you can disable the policy. See Azure Active Directory Identity Protection for more details.

Unblocking accounts at risk

To unblock an account at risk, you have the following options:

  1. Reset password - You can reset the user's password. See manual secure password reset for more details.
  2. Dismiss all risk events - The user risk policy blocks a user if the configured user risk level for blocking access has been reached. You can reduce a user's risk level by manually closing reported risk events. For more details, see closing risk events manually.
  3. Exclude from policy - If you think that the current configuration of your sign-in policy is causing issues for specific users, you can exclude the users from it. See Azure Active Directory Identity Protection for more details.
  4. Disable policy - If you think that your policy configuration is causing issues for all your users, you can disable the policy. See Azure Active Directory Identity Protection for more details.

Next steps

Do you want to know more about Azure AD Identity Protection? Check out Azure Active Directory Identity Protection.