Self-Service Password Reset

SSPR
identity

Feature that allows users to reset their passwords without helpdesk intervention through verified authentication methods.

What is Self-Service Password Reset?

Self-service password reset reduces helpdesk burden (password resets are typically 20-40% of IT support tickets) while maintaining security through MFA verification. Users must verify their identity using registered authentication methods before being allowed to reset their password. Combined registration with MFA ensures users are prepared for both scenarios.

In Microsoft 365

Azure AD SSPR can be enabled for all users or specific groups. It requires users to register authentication methods and can write passwords back to on-premises Active Directory in hybrid environments. Combined registration at aka.ms/mysecurityinfo covers both MFA and SSPR.

Examples

  • 1Mobile app verification for reset
  • 2Security questions with phone backup
  • 3Email verification to alternate address

Related TrueConfig Controls

These controls help implement and verify self-service password reset in your Microsoft 365 environment.

ID-03Enable Self-Service Password Reset

Frequently Asked Questions

What is Self-Service Password Reset (SSPR)?
Feature that allows users to reset their passwords without helpdesk intervention through verified authentication methods.
How does Self-Service Password Reset work in Microsoft 365?
Azure AD SSPR can be enabled for all users or specific groups. It requires users to register authentication methods and can write passwords back to on-premises Active Directory in hybrid environments. Combined registration at aka.ms/mysecurityinfo covers both MFA and SSPR.
What are examples of Self-Service Password Reset?
Examples of Self-Service Password Reset include: Mobile app verification for reset, Security questions with phone backup, Email verification to alternate address.
Which TrueConfig controls relate to Self-Service Password Reset?
TrueConfig controls related to Self-Service Password Reset include: ID-03. These controls help implement and verify self-service password reset in your environment.

Related Terms

Multi-Factor Authentication

(MFA)

A security mechanism that requires users to provide two or more verification factors to gain access to a resource.

← Back to GlossaryBrowse Controls →