ID-03: Enable Self-Service Password Reset

Frequently asked questions about implementing and managing the ID-03 security control in Microsoft 365 and Entra ID.

Q
What is ID-03 (Enable Self-Service Password Reset)?
A

ID-03 is a security control that sspr allows users to securely reset passwords without helpdesk intervention. it reduces password reset tickets by up to 70% while maintaining security through mfa verification during reset. It requires that self-service password reset (sspr) is enabled for all users and at least two authentication methods are required for reset, users are registered for sspr via combined registration.

Related controls:ID-03
Q
Why is Enable Self-Service Password Reset important for Microsoft 365 security?
A

SSPR allows users to securely reset passwords without helpdesk intervention. It reduces password reset tickets by up to 70% while maintaining security through MFA verification during reset.

Related controls:ID-03
Q
How do I implement ID-03 in my tenant?
A

ID-03 requires manual implementation. Requires Entra admin center configuration

Related controls:ID-03
Q
What license do I need for ID-03?
A

This control can be implemented with any Microsoft 365 subscription, including free Azure AD.

Related controls:ID-03
Q
Which security baseline includes ID-03?
A

ID-03 is included in the TrueConfig Recommended Secure baseline (Level 1). This is the foundation level suitable for most organizations.

Related controls:ID-03

5

Questions

1

Related Controls

Categorized

Related Resources

ID-03 Control Reference

Detailed documentation and implementation guidance

Identity & Authentication Controls

All controls in the Identity & Authentication category

Security Glossary

Definitions of security and Microsoft 365 terms

Still have questions?

Our security experts are here to help. Start a free trial and get personalized guidance for your Microsoft 365 environment.

Start Free Trial
All FAQsBrowse Controls →