114 votes16 comments · Azure Active Directory » Self-Service Password Reset · Flag idea as inappropriate… · Admin →
Hi folks! Thank you for your feedback. We don’t yet have plans to release this feature, but we are still considering it. We will update you if anything changes.
165 votes20 comments · Azure Active Directory » Self-Service Password Reset · Flag idea as inappropriate… · Admin →
We are planning to re-design the self-service password reset experience. The new experience will be mobile-friendly! We’ll keep you up to date as we make progress.
An error occurred while saving the commentJames Ellinidis (Cenitex) commented
User's having full control of their account on a trusted device is essential. See below for ideas:
The initial screen would display the same 6 generated numbers as in the Microsoft Authentication App. Entering or tapping the 6 digits would allow the user to login as per normal.
Below the 6 digits we would require their be either an Unlock and Reset button / Link which would then prompt the user to enter their network password on their trusted device.
Once entered, the AD account would either unlock or display a form within the app where the user can reset their password.
+ User would have the ability to unlock and reset their password within an App
+ Once registered, the device would be on the users trusted device list and potentially would not require any other authentication.
+ Allowing users to unlock/reset their password anywhere / anytime
+ Should be able to sell/convince this to end users
+ If designed correct, MFA and SSPR would be within the same single app – 2 in 1 Solution.
385 votes52 comments · Azure Active Directory » Self-Service Password Reset · Flag idea as inappropriate… · Admin →
Hey folks! Thank you for your feedback. We are reviewing this ask and will keep you up to date on our findings. We have also added information about this limitation in our documentation. Thank you!
We’re currently working on this capability and will provide an update when it’s done.
However, instead of expanding the “Additional Local administrators” setting, we will support adding AAD groups to Windows 10 local groups (.e.g Administrators, Remote Desktop Users) via MDM policy and elevate user privileges on logon. This will provide greater flexibility to assign different groups to different devices