User cannot change password

Usage When checked, the plugin won’t allow users (that are not administrators) to change their passwords. Whenever WPO365 creates a new WordPress user on behalf of a Microsoft user that signs in for the first time (or when a new user is created during WPO365 User synchronization), it will create a random (strong) password for that user (see password length). 

To prevent a user from being able to sign into the WordPress website using his / her WordPress "local account" username and password, you can (and should) prevent a user from changing his / her password. Instead, the user is expected to sign into your website with Microsoft.

Please note For regular workforce Azure AD tenants, WPO365 will check if the user that intends to change his / her email address signs in with Microsoft. It therefore compares the domain portion of the email address with the list of Custom domains on the plugin's User registration page. Therefore it is important that you keep that list up-to-date.

For customer tenants (e.g. Azure AD B2C and Entra External ID), this setting will always prevent users from changing their email address.

Default value checked.

Related User cannot change email address.


Visit the website

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.

Still need help? Contact Us Contact Us