Set a user’s password expiration policy

I often get asked about our customer that is there any way to stop user’s password getting expire on a regular basis in Office 365.We reccomend that not to chnage that setting as it will relax the security settings and complaince.

As an admin user we can make user’s passwords expire after a certain number of days or set the password to never expire. It is also possible to change the number of days before users are notified of password expiration.

This applies to Office 365 Enterprise, Office 365 Business Essentials or Office 365 Business Premium.

Sign in to Office 365 with your work or school account.

Go to the Office 365 admin center.

In the admin center preview, go to Settings > Security and privacy and click Edit.

Security & Policy

In the admin center, go to Service settings and then Passwords.

Password Policy Admin Center
If you don’t want users to have to change passwords, select Passwords never expire. If you select this option, users won’t get any reminders anymore to change their passwords.

If you want user passwords to expire, type the number of days before the password should expire. Choose a number of days from 14 to 730.

Type the number of days before users are notified that their password will expire, and then click Save. Choose a number of days from 1 to 30.

Setting Up multi-factor authentication for Office 365 users

Multi-factor authentication helps secure Office 365 Users sign-ins for services beyond regular single password mechanism. With MFA for Office 365, users are required to acknowledge a phone call, text message, or app notification on their smart phones after correctly entering their passwords. They will be allowed to use the services only after this second authentication factor has been validated.

To set up multi-factor authentication app for Office 365 we need to follow the below steps

Sign in to the Office 365 admin center though the Portal

In the admin center, choose users and groups > Active Users.

In the classic admin center, next to Set Multi-factor authentication requirements, choose Set up.

classic admin center

In the admin center preview, choose More > setup azure multi-factor auth.

admin center preview

Find the user or users that you want to enable for MFA. Best Way is search for the user

Check the check box next to the names you chose.

This will reveal two options on the right: Enable and Manage user settings. Choose Enable.

In the dialog box that opens, choose enable multi-factor auth.

Enable Multifactor

The steps to set up your preferred verification method begin on this page.

Once the administrator has configured your Office 365 environment and one or more devices to use a second verification method, then you will now do a two-part sign in. First, you enter your work or school account user name and password. Then you use a second verification method through a phone, a text message, or the Authenticator app. You set up your preferred verification method the first time you do the two-part sign in.

It will display the Additional security verification page, click Set it up now.

Choose Mobile app and receive notification for verification

MFA Setup05

It will take you to the Configure Mobile App Page, Follow the instruction on the page Click on the Contact me button

MFA Setup06

As a next step you need to enter the code which displayed on the mobile app and click on verify

MFA Setup07

Type the mobile number incase to access using SMS verification

MFA Setup08

 

That’s it you are ready to use the Multi-Factor Authentication

Here we go the MFA is Enabled now.

MFA Setup09