Microsoft 365 Certified Endpoint Administrator (MD-102) Practice Test

What is a true statement regarding password policies in Azure Active Directory?

• A. Passwords can be set to never expire
• B. Passwords must be changed every 180 days
• C. Passwords can be set to use simple words
• D. Passwords can be set to use only numbers

The correct answer is: Passwords must be changed every 180 days

The statement regarding password policies in Azure Active Directory indicates that passwords must be changed every 180 days, which implies a strong security practice to ensure that user credentials are regularly updated for increased protection against unauthorized access and potential breaches. Azure Active Directory allows organizations to enforce specific password policies to help maintain the security integrity of user accounts. In this context, the ability to enforce regular password changes is essential in combatting issues such as password fatigue and the risk of compromised credentials. By requiring users to change their passwords at intervals, organizations can reduce the chances of long-term exploitation of any leaked or stolen credentials. Other options present different scenarios that do not align with best practices or current policies within Azure Active Directory. For instance, while the option suggesting that passwords can be set to never expire may apply in certain contexts based on organizational policy, it is not universally true and is typically not recommended for security reasons. Allowing passwords to contain simple words or to use only numbers would weaken password strength, which goes against the security policies designed to promote robust credential formation.