Came across this interesting tidbit today when enabling and testing Self-Service Password Reset (SSPR) with a customer.

Microsoft used to require you to enter your old password for validation before issuing a reset. Unfortunately that opened up a few issues for users that may have forgotten their password or need to reset it after expiration.

As you can see below you’re no longer prompted to enter it in the final step.

Happy SSPRing!

 

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes:

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>