Mobile Device Management - Ensure that Mobile Devices Are Set To Never Expire Passwords

 







Summary

Users passwords on their mobile devices should never expire.

Reason

It has been found in a research that if periodic password resets are enforced, then, they will become weak as users generally tends to choose something weaker and use the pattern of it for rotation. However, a strong password- long, complex and without any pragmatic words present, it will remain as strong after 60 days as today. It is Microsoft's official security position to not expire passwords periodically without a specific reason.

What If?

This setting should not cause any noticeable impact to users.

How to?

To set mobile device management profiles, use the Microsoft 365 Admin Center:
  1. Under Admin Centers pick Device Management.
  2. Select Devices and then under Policy select Configuration profiles
  3. Review the list of profiles.
  4. From there go to the device policies page to remove any device security policies that expire passwords.

Monitor:

To verify mobile device management profiles, use the Microsoft 365 Admin Center:
  1. Under Admin Centers pick Device Management.
  2. Select Devices and then under Policy select Configuration profiles
  3. Review the list of profiles. Ensure that a profile exists for each Platform.
  4. Now, review the Device restrictions section and under Password verify that passwords are not configured to expire.


























Comments

Popular posts from this blog

Deployment (Part 3)

Deployment (Part 1)

Project Resourcing (Part 2)