Reset/change mobile app password
Using a MAM policy I have required my users to create a PIN/Passcode to access the Outlook mobile app. Once the user sets this password THERE IS NO WAY FOR THE USER TO CHANGE THE PASSWORD! How can you make an app with a password and NOT provide a way for the user to change it????
1) Provide user with a way to change there own password. (user would have to re-authenticate with account credentials to complete password change.
2) Update MAM policies to give Admin capability of requiring user to change their password every X days.
3) Create capability for admin to send remote command to remove current password on the application. User would be required to re-authenticate set password again.
#1 is available today for the APP(MAM) PIN.
#2 is available today for the APP(MAM) PIN, despite not being recommended by security experts.
#3 may be available through AAD? Not available through APP(MAM) PIN and no plans.
#1 is possible today. User is offered this capability when entering their PINcode via the "Forget your Pin?" option. Which take the user through full account re-authentication and reset a PINCode.
#2 frequently enforcing the changing of a passcode is no longer security expert's recommended best practice. It leads to weak passcodes and often users forgetting their newly created PINcode.
#3 can't this be also done today by an admin resetting the user's account password.
Can I ask how you setup your MAM policy to require users to create the PIN/Passcode when using the outlook mobile app?