Password Validation in Azure SSPR
As of now, when user is trying to change his password via Azure SSPR user gets a generic statement stating that "the password does not meet the complexity etc...".
Instead of the above statement/message we want some message to be displayed in azure SSPR on the fly (while user is typing the new password) below are few suggestions.
- The password should be at least 9 characters long
- Do not use repeat password.
- Employee cannot use user name as password
- Password should meet below criteria
4.1. Password must contain lower case letters
4.2. Password must contain upper case letters
4.3. Password must contain numerical
4.4. Password should not contain full or part of user name
As this will help the user to know whether he/she is following his company password policy or not.
You could also add a checkbox in front of the condition i.e. as soon as user enters the password it should tick that condition.