Azure Active Directory

Welcome to the Azure Active Directory suggestions and feedback site! We love hearing from you. If you have suggestions, please submit an idea or vote up an idea. We are monitoring the site actively.

Thank you for joining our community and helping improve Azure AD!

We have a new log in experience integrated with Azure AD, and we strongly recommend you log in with your Azure AD (Office 365) account. If your UserVoice account is the same email address as your Azure AD account, your previous activities will be automatically mapped to your Azure AD account.  You can read more here for details: https://techcommunity.microsoft.com/t5/Azure-Active-Directory-Identity/Putting-customers-first-for-f...

How can we improve Azure Active Directory?

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allow admin to reset a users security questions should they forget them

    Allow azure admin to reset a users security questions should they forget them

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  2. 1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  3. Self-service password reset (SSPR) - Lockout user account with multiple attempts Azure Active Directory Sign-In

    In self-service password reset (SSPR), to prevent users from multiple attempts to reset a password, if user try only five wrong password reset attempts it lock user for 24 hours. I would like to confirm, if there is a way for Admins to reset the counter for the locked user account and/or unblock user to login to the Azure portal?

    Reference article: https://docs.microsoft.com/en-us/azure/active-directory/authentication/active-directory-passwords-faq

    In the scenario, where a bad actor try to lock some user’s then it could easily be done by knowing the username and users will not be able to login for 24 hours. Is there a way…

    3 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  4. Link broken to the password reset registration page for Lindenwood

    Every time I try to update the “more information required” page for my office 365 account for college, it sends me to a page which says “an unexpected error has occurred”. I have visited the site multiple times throughout the last few weeks.

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  5. Require PIN verification for office phone resets

    With modern open office floor plans a persons office phone might not be located in a secured area. As of now SSPR will simply call the office phone number and ask the user to press #. This creates a security issue in shared office space. Someone can easily from any computer type in a username, walk over to the desk, answer the phone and complete a password reset. An added layer of security should be setup where a user who sets up an office phone number is required to create a security PIN. Microsoft SSPR calls the number and request…

    4 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  6. enable SSPR Via Powershell

    The ability to manage and enable SSPR with power shell/script commands. Customers that work as IT solution providers can potentially have multiple clients (10- 15) that would like to enable Self Service Password Reset. If the Solution provider was able to manage this in power shell or with a script they would be able to take a task that would normally take a few hours to set up and test, and run it in a few minutes.

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  7. We need to display password reset guidance( Passsword complexity set in AD) in SSPR pages for end users

    Why azure doesn't have flexibility to include password parameters that are to be used while an end user resets his password through SSPR?

    2 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  8. Add ability to use a phone number for SSPR help desk support

    Add ability to use a phone number for help desk support contact info. Currently it’s only URL or email address.

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  9. password reset

    Make it possible to Exclude/deny groups for password reset. Today them only option is to allow specific groups or all uses. I want to allow all users and deny a group.

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  10. Need an ability to force enrollment in AAD SSPR if a user logs in using a domain joined or Hybrid AD joined device.

    Need an ability to force enrollment in AAD SSPR if a user logs in using a domain joined or Hybrid AD joined device. Right now SSPR enrollment can be enforced for sign in to Azure AD joined apps only.

    2 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  11. Add the ability to reset/clear SSPR registration information.

    We have the ability to clear/reset MFA registration information. It would be great if we had the ability to do the same for SSPR information. Our service desk has asked us a few times if we could do this but we tell them no. It would also be great for us when we try and test new registration steps.

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  12. Enable in AAD admin portal for allow only select users or groups to change password from Office 365 Portal

    This option is for the user security for not allow change password if the user is not enable MFA, in the case that other user know your password and MFA is not enabled.

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  13. SSPR APIs to create or update challenge questions

    It would be good to have APIs to update the challenge questions and response for SSPR. in that way, it can be integrated with an existing user self - registration solution.

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  14. Azure AD password reset from the login screen password expiration notification

    Azure AD password reset from the login screen has no password expiration notification, when the password is expired. Although, you can click on "Reset password" to reset your password, it doesn't tell you that the password is expired and that you should reset it.
    It would be good if such a password expiration notification on the login screen would be implemented.

    2 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  15. Prevent user from reset Password with same mobile phone - app & message

    Today a user can use the same mobile phone for password reset by using text message / phone call and authenticator app...

    To view the text message, answer the call and / or accept the push notification it is not necessary to unlock the phone.

    So what's the use of forcing two methods for password reset?

    We need an option to prevent user from reset password by using app notification and phone message / call. The Authenticator App could access the mobile phone number, used by the device and the admin should have the option to prevent accepting push notifications…

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  16. Allow use of custom controls/conditional access with self service password reset

    Allow one of the self service password reset options to be a custom control, such as calling Duo/Okta (currently allowed as a conditional access control). As a company that doesn't use Azure MFA it would be good to be able to use another MFA provider instead of requiring a second mobile application be enrolled, or using less secure methods like SMS.

    3 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  17. 02255-12@imco.edu.om

    forget pass

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  18. Self Service Password Reset (SSPR) - Adding exception for users

    We have created many users through Application in Azure AD. And these users are not a part of any Azure AD groups.
    SSPR is not capable of adding exception for those users, who doesn't want to enable this functionality as they are not logging using WEB URL.
    If Azure platform could provide any conditional access just like MFA it would be of added advantage.

    6 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  19. 0 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  20. Do not take users in circles! I have been able too do nothing but change passwords!

    I have a touch secure phone - shouldn’t that be enough? I really need copies of my last three months pay stubs, but, it seems that I need to be an engineer to do so!

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4
  • Don't see your idea?

Feedback and Knowledge Base