Azure Active Directory

Welcome to the Azure Active Directory suggestions and feedback site! We love hearing from you. If you have suggestions, please submit an idea or vote up an idea. We are monitoring the site actively.

Thank you for joining our community and helping improve Azure AD!

Wehave a new log in experience integrated with Azure AD, and we stronglyrecommend you log in with your Azure AD (Office 365) account. If yourUserVoice account is the same email address as your Azure AD account, yourprevious activities will be automatically mapped to your Azure AD account.  You can read more here for details: https://techcommunity.microsoft.com/t5/Azure-Active-Directory-Identity/Putting-customers-first-for-f...

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. AAD SSPR admin notifications issue with AAD PIM

    AAD PIM is a bypass for AAD SSPR admin password reset notifications

    Give us the option to specify who should get notified when a admin or eligible admin resets their password.

    I confirmed the notification is not sent to eligible admins (not good)
    I assume its also not sending the notification to current admins if a eligible admins resets his password.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →

    Thank you for your feedback! To clarify, you want all eligible admins to receive a notification when an admin resets their password?

    At this time, you can ensure that other admins are notified when an admin resets their password. Check out this setting under the Notifications tab in the Password reset section of the Azure AD portal.

    Thanks,
    Sadie Henry (sahenry)

  2. Azure Password Management reporting RBAC

    Extend the new administrative roles added to Azure AD that enable finer-grained administration ( https://blogs.technet.microsoft.com/enterprisemobility/2016/06/28/azuread-updated-with-new-admin-roles/ ) to also encompass Password Management, including MIM hybrid reporting of Self Service Password Reset.

    We are in the midst of deploying MIM Hybrid Reporting for Self Service Password Reset and would like to be able to provide business administrators access to the reporting, without granting administrative access.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  3. Make certain fields optional while registering

    With MFA enabled and the security questions answered, I still have to fill in one or two required fields (e-mail and phonenumber). I cannot choose other options which I selected.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  4. Don't assume that my work email is hosted with Azure / MS.

    When I try to set my email address as a recovery method I get the following error:

    Don't use your work or school email address, because you won't have access to it if you forget your password.

    But that's not true. My company uses a different email hosting service. Losing access to it has nothing to do with my Azure portal password.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  5. Longer Security Questions Truncated by UI

    When selecting Security Questions as an option in mysignins.microsoft.com, many of the longer questions are truncated by the UI so you cannot read the entire questions. Zooming the browser in or out doesn't fix this (my zoom is at the default setting anyway). We are also using many of the pre-configured questions provided in Azure AD.

    I think you need to make this dropdown scale better to accommodate the length of all the default questions.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  6. Allow Customizable SSPR Error Message When Not Using Password Writeback

    Admins really need to be able to customize the SSPR error page's message when not using password writeback.

    At the moment, we can only change the destination of the "contact your administrator" hyperlink. We do currently have this pointing to our company's internal web page for resetting passwords. (https://[pwresetsite].[domain].edu)

    However, the problem is that the following sequence of events happens 100% of the time:

    A) User reads "you can't reset your own password because password writeback" and simply stops. An error message we can't control gives the user the impression that they cannot self-fix this issue. Even if…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  7. Modification of the built-in password reset policy so that an email is being populated through Graph API

    When using built-in policy for password reset v1 or v2, we are unable to reset the password if Email text box is not having email id configured. If I create user using Graph API, it will store email id in Alternate Email text box. So unable to do password reset using built-in policy. I request B2C team to work on this.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  8. Remove account alternate email from user selector

    When a user adds an external email address as their alternate address it becomes an internal email address. So if I for instance share files to the alternate address it fails, beacuse it seems to count as an internal address. Also, if I send an email to that external address they end up in the mailbox for the user that has that address as an external email.
    Make that alternate email private on the account.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  9. Password reset Usage Insights - New tile for licensed users

    The Usage & Insights are great! But it shows a total of all accounts which is very inaccurate for the users we expect to be enrolled in MFA or SSPR. What about adding a new tile for total number of users registered out of the total number of licensed users? That would give us a much better "insight" to report to management about. We have around 900 licensed users for E3 - how about a tile for number of users registered who are actually licensed for it?

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  10. Notification for Password Reset

    Notification for password reset came to primary and alternative user e-mail. Why the administrator receive the notification only on alternative e-mail and why only classic Global Administrators are notified? Why the PIM roles are not notified or some other e-mail which can be added?

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  11. Modify SSPR link

    Due to organizational password policies we are using a third-party on-premise application for this functionality. However, when users login to Office 365 they are presented with the Azure SSPR link, please provide a method for an organization to change this link for non-onmicrosoft.com accounts or hide the link all together.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  12. Allow additional options other than Microsoft Authenticator app in Combined MFA/SSPR Registration Experience

    The new combined MFA/SSPR registration experience is a big improvement over the former process. Based on feedback from our admins and users, we would like to suggest the following:


    1. Our organization does not wish to use Email or Security questions as our primary use case is MFA registration. With these options turned off, when users go through the registration process their only option is to setup the authenticator application (see screenshot). It would be great if all our users could use the authenticator app, but it's not possible. We would like the authenticator app to be presented by default but…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  13. non posso scaricare app perchè il mio cellulare non è smartphone e non lo consente quindi resto con la password

    non posso scaricare app perchè il mio cellulare non è smartphone e non lo consente quindi resto con la password

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  14. Additional notification settings "Notify manager on password resets"

    Currently there are 2 notification settings on SSPR: [Notify users on password resets] and [Notify all admins when other admins reset their passwords].

    Could you add "Notify manager on password resets" so that user's manager is notified when the user reset his/her password?

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  15. Password Reset not sending code

    Password Reset not sending code if it is requested by phone, only if you add a number 1 in front of the number, I tried two times without it and never got a code, once I added it I got it.
    Please add a note right next to the input field for the phone number stating that the number one is needed.
    Thanks.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  16. Can change method

    Hello,

    We find a problem with SSPR.
    In our first test we authorize :
    -Mobile app code
    -Mobile app notification
    -Email
    -Mobile Phone
    -Office Phone

    We required 2 methods for reset.
    Until there no problem.
    We made some test and it works.
    But we ask us to desactivate the Mail method and add security questions as a valid method.

    We did it.

    For someone that don't have register yet, no problem, but for someone that had already register we have a problem.
    He can't add questions method.
    We test with the preview version of SSPR registration:
    https://docs.microsoft.com/fr-fr/azure/active-directory/authentication/howto-registration-mfa-sspr-combined

    We can delete…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  17. Display Password Requirements

    Similar to the method used to display company's logo, create method to input and display company's password requirements in window where user is changing their password.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  18. Configure SSPR Authentication methods for admin roles

    By default, administrator accounts are designed to use two-gate password policy for authentication and this can't be changed.
    These options can be changed only for users.
    Please provide this options also for administrators.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  19. Re-design the security information registration option

    The ability to enforce registration of security information to trusted location works great, but the design seems flawed.

    We don't have the ability to exclude the security information registration page from conditional access. If we enforce conditional access on All Cloud Applications and require Hybrid Azure AD or Compliant Devices external consultants / subcontractors won't be able to do the initial sign-up.

    Instead of adding the option "User Action" to Azure Conditional Access you should have added an application that we could exclude or the ability to exclude "User Action" from a "Cloud Apps" policies. I think this is due…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  20. mon compte bloque free

    comment débloque mon compte bloque

    merci

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Self-Service Password Reset  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base