Fred Murphy

My feedback

  1. 110 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    15 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Fred Murphy commented  · 

    Allowing an Azure function to be called to check password suitability would seem to be the most flexible way to implement this.

    For instance, the NIST guidelines also mention disallowing passwords exposed in previous breaches. Being able to check against the HIBP list would be very useful.
    https://www.troyhunt.com/ive-just-launched-pwned-passwords-version-2/

    Fred Murphy supported this idea  · 

Feedback and Knowledge Base