SOLVED: How To Set Azure / M365 User Accounts To Not Expire

Published by Ian Matthews on

If your company is anything larger than tiny and you are using Microsoft Office 365 or Azure, you will almost certainly run into a situation in which you want to a few user account set to not expire. Perhaps they are service accounts, or they are accounts that contractors rarely use.

Why Microsoft Says User Passwords Should NOT Expire

You might be surprised to find that Microsoft’s official position is that you should not have your Microsoft 365 or azure accounts expire:

Password expiration requirements do more harm than good, because these requirements make users select predictable passwords, composed of sequential words and numbers that are closely related to each other. In these cases, the next password can be predicted based on the previous password. Password expiration requirements offer no containment benefits because cybercriminals almost always use credentials as soon as they compromise them.

https://learn.microsoft.com/en-US/microsoft-365/admin/misc/password-policy-recommendations?view=o365-worldwide&WT.mc_id=365AdminCSH_inproduct#password-expiration-requirements-for-users

How to Set ALL Microsoft Office User Account Passwords To Expire or Not

microsoft office 365 password expiration policy
  1. Sign into https://portal.office.com
  2. Click the ADMIN link (bottom of the left rail)
  3. Click SHOW ALL (on the left menu)
  4. Expand SETTINGS
  5. Click ORG SETTINGS
  6. Click SECURITY & PRIVACY tab along the top
  7. Click PASSWORD EXPIRATION POLICY
  8. Click the SET PASSWORDS TO NEVER EXPIRE checkbox
  9. Set the number of days between password resets

How To Set a Specific Microsoft User Account to Not Expire

how to set azure microsoft 365 user accounts not to expire
  1. Open a PowerShell (or Windows Terminal) as an Administrator
  2. Enter
    Install-Module MSOnline
  3. Enter
    Connect-MsolService
  4. Sign in to the Microsoft Office 365 / Azure account
  5. OPTIONAL: Enter
    Get-MsolUser -UserPrincipalName User@EmailAddress.com
    • This will display some user account information
  6. Enter
    Set-MsolUser -UserPrincipalName User@EmailAddress.com -PasswordNeverExpires $true
  7. Enter
    $user = Get-MsolUser -UserPrincipalName "user@domain.com" | Select-Object UserPrincipalName, PasswordNeverExpires, WhenCreated, LastPasswordChangeTimestamp
    $user
    • This will display when the account was created, when the password was last changed, and if it is set to not expire
Categories: Business & Tech News

0 Comments

Leave a Reply

Avatar placeholder

Your email address will not be published. Required fields are marked *

Related Posts

React or React Native

Which is Better, React or React Native, and Why?

Facebook products React and React Native have rapidly gained popularity. React, or ReactJS, is a JavaScript library for creating single-page web applications. On the other hand, React Native is a framework based on ReactJS tailored Read more…

screen-recorder-windows-10-2

How-to Guide: Screen Recording in Windows 10

apture all your screen activities with ease using Windows 10's built-in screen recording tools or third-party software. This guide walks you through the simple steps to record videos on your desktop.

video learning with camera

How Students Harness the Power of Video Content for Learning

Video has become an incredibly powerful tool for students to learn new skills and concepts. With websites like YouTube or Academized.com essay writing service providing easy access to educational videos on almost any topic, students Read more…