Microsoft has recently deployed an update on Office 365 which allows Office 365 administrators to define password expiration delay and notification delay.
2 methods are available:
- PowerShell: with Set-MsolPasswordPolicy which requires 2 parameters – first one indicates the password period validity, the second one indicates the delay before users receive first password expiration notification.
The following sample is settings password expiration to 30 days and notification period to 15 days set-msolpasswordpolicy -domain <your Office 365 tenant> -notificationdays 15 -validityperiod 30
Associated with this CMDLet, a new one has been also provide to get the password policy: Get-MsolPasswordPolicy
get-msolpasswordpolicy -domain <your Office 365 tenant>
- Office 365 Administration Portal: at the Users Management section, a new section should be available to define these settings (NOTE: if this new section is not yet available throught your tenant administration portal, the CMDLet’s are working anyway)
In addition, Outlook Product Group is planning to deliver an update to provide password expiration notification through Outlook 2010 and 2007 (schedule delivery date August, 28th).
Off course, this is still allowed to set password to not expire:
- For a specific user: Set-MsolUser -UserPrincipalName <username> -PasswordNeverExpires $True
- For all user: Get-MsolUser | Set-MsolUser -PasswordNeverExpires $True