Mobile Device Management - Ensure that Mobile Device Password Reuse Is Prohibited

 






Summary

Users are not allowed to reuse the same password on their mobile devices.

Reason

Mobile devices without this protection are vulnerable to attackers who can steal account credentials, data, or install malware on the device. Unique and unused passwords should be chosen whenever a password is changed. This practice will lessen the probability of the password being guessed by the attacker.

What If?

This change will have a moderate user impact.

How to?

To set mobile device management profiles, use the Microsoft 365 Admin Center:
  1. Under Admin Centers pick Endpoint Management.
  2. Select Devices and then under Policy select Configuration profiles
  3. Now, select Create profile 
  4. Set a Name for the policy, choose the appropriate Platform and select Device restrictions.
  5. In the Password section, ensure that Prevent reuse of previous passwords is set to 5

Monitor:

To verify mobile device management profiles, use the Microsoft 365 Admin Center:
  1. Under Admin Centers pick Endpoint Management.
  2. Select Devices and then under Policy select Configuration profiles
  3. Review the list of profiles. Make sure that a profile exists for each Platform.
  4. Review the Device restrictions section under Password and verify that Prevent reuse of previous passwords is set to 5.










































Comments

Popular posts from this blog

Deployment (Part 3)

Deployment (Part 1)

Project Resourcing (Part 2)