Ensure that 'Notify users on password resets?' is set to 'Yes'
Why This Matters
Notifying users when their password is reset provides an essential security control against unauthorized account takeover. Without this notification, a malicious actor could reset a user's password and gain persistent access without the legitimate user ever knowing. This notification acts as a passive monitoring mechanism that empowers users to detect and report suspicious password reset activity immediately.
What Aether365 Checks
Aether365 verifies that the "Notify users on password resets?" setting in Microsoft Entra ID is enabled and set to "Yes." This check appears in the Aether365 dashboard under the entra-id checks category, helping you maintain visibility into password reset notification configurations.
How to Fix
Follow these steps to enable password reset notifications for users in Microsoft Entra ID: