Microsoft announced in a recent blog post that they will be reconsidering their stance on password expiration policy for Windows users. For years Microsoft encouraged administrators to expire users’ passwords every few weeks. The initiative was thought to have made it harder for credentials to be stolen. However, Microsoft Principal Consultant Aaron Margosis identified foreseeable user issues when asked to frequently change passwords. Some of these issues are:
Whilst Microsoft has dropped the expiration policy for Windows users, they still plan to keep their baseline requirements such as minimum password length, history, and complexity. Although the policy has been dropped, Microsoft still plans to have it as an option for organisations should they wish to keep it.
Margosis wrote that whilst they are removing the expiration policy, it does not necessarily mean that they are “lowering security standards”. Instead, Margosis proposes alternative security measures such as:
Microsoft has pioneered the abandonment of frequent expiration. They uphold that with other security baselines in place, the removal of this policy won’t jeopardise your credentials.
Chat to us about business security today on 1300 300 293
Key Takeaways: Implementing strategic IT upgrades can significantly enhance business operations without requiring substantial investment.…
Key Takeaways: Cloud computing offers unparalleled efficiency, allowing businesses to optimise resources. It provides scalability,…
In the ever-evolving landscape of remote work, 2024 has seen remarkable advancements in technology tools…
Data Privacy Day serves as a crucial reminder of the importance of protecting personal and…
In the evolving landscape of Australian business technology, cloud platforms have emerged as a vital…
In the ever-evolving world of technology, 2024 marks a significant year for Managed IT Services.…