Set the password expiration policy for your organization

Contributors: Diane Faigel Kweku Ako Adjei
Last updated 14 December, 2017

I forgot the username or password for the account I use with Office.

This article is for people who set password expiration policy for a business, school, or nonprofit.

If you're a user, you don't have the permissions to set your password to never expire. Ask your work or school technical support to do the steps in this article for you.

As an admin, you can make user passwords expire after a certain number of days, or set passwords to never expire. By default, passwords are set to never expire.

You must be an Office 365 global admin to perform these steps.

  1. Go to the Office 365 admin center.

    Go to the Office 365 admin center.

    Go to the Office 365 admin center.

  2. In the Office 365 admin center, go to Settings > Security and privacy. If you aren't an Office 365 global admin, you won't see the Security and privacy option.

    Navigate to Security and Privacy.

  3. Click Edit.

    Choose Edit.

  4. If you don't want users to have to change passwords, set Passwords never expire to On.

    Set to On.

  5. If you want user passwords to expire, in the first box type how often passwords should expire. Choose a number of days from 14 to 730.

    Enter how often passwords should expire.

  6. In the second box type when users are notified that their password will expire, and then click Save. Choose a number of days from 1 to 30.

    IMPORTANT: We're currently investigating a bug that's preventing this feature from working consistently. Your users may not get a notification before their password expires. This means when they sign in to Office 365 and their password has expired, they'll be prompted to change their password at that time without any advance notice.

Prevent last password from being used again

If you want to prevent your users from recycling old passwords, you can do so in Azure AD. See Password policies and restrictions in Azure Active Directory.

Synchronize user passwords from an on-premises Active Directory to Azure AD (Office 365)

This article is for setting the expiration policy for cloud-only users (Azure AD). It does not apply to federated users who use on-premises federation like ADFS. Nor does it apply to users whose accounts are synchonized from on-premises through password sync.

To learn how to synchronize user password from on premises AD to Azure AD, see Implement password synchronization with Azure AD Connect sync.

Related articles

Set an individual user's password to never expire

Let people reset their own passwords in Office 365

The short icon for LinkedIn Learning. New to Office 365?
Discover free video courses for Office 365 admins and IT pros, brought to you by LinkedIn Learning.

Connect with an expert
Contact us
Expand your skills
Explore training

Was this information helpful?

Thank you for your feedback!

Thank you for your feedback! It sounds like it might be helpful to connect you to one of our Office support agents.

×