Azure_IAM_5

Ensure that Number of methods required to reset is set to 2

Description

Ensure that two alternate forms of identification are provided before allowing a password reset.

Remediation

Perform the following in the Azure Console:

  1. Go to Azure Active Directory
  2. Go to Users and group
  3. Go to Password reset
  4. Go to Authentication methods
  5. Set the Number of methods required to reset to 2

References:

  1. https://docs.microsoft.com/en-us/azure/active-directory/active-directory-passwords-faq#password-reset-registration

Service

IAM

Severity

Medium

Compliance

Mapping

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!