Manage Password Restrictions

Use this operation to add or remove blocked passwords in the password policy.

Role Requirements

Procedure Scope: Administrators

Required Group Membership: Admin.Security

Handbook Reference

Package: Identity Security

Domain: Password Management

Modifies: Blocked Passwords

When to Perform this Operation

As Needed: Proactive or in Response to User/Security

Technical Description and Importance

Managing password restrictions ensures that users cannot create passwords that are weak, easily guessable, or commonly used. By maintaining a list of blocked passwords, organizations reduce the risk of credential-based attacks such as brute force or dictionary attacks. This management process supports organizational security policies and compliance requirements for strong authentication. Routine updates to the banned password list help align security measures with evolving threat landscapes and enforce password hygiene across all users.

Management Options

• Add a Banned Password
• Remove a Banned Password

Add a Banned Password:

Purpose
Add a password to the blocked list to prevent users from setting it.
Use Case
A commonly used password, such as "Password123," needs to be restricted due to security concerns.

Remove a Banned Password:

Purpose
Remove a password from the blocked list to allow users to set it.
Use Case
A previously banned password is no longer considered a risk and must be allowed due to an organizational policy change.

Operation	Action	Target
Add a Banned Password	Addition	Blocked Passwords
Remove a Banned Password	Removal	Blocked Passwords

Add a Banned Password

This operation adds a password to the blocked password list to prevent users from using it.

       1. Entra ID Banned Password Addition

Remove a Banned Password

This operation removes a password from the blocked password list to allow users to use it.

       1. Entra ID Banned Password Removal

Need Assistance?