Office365 users, rejoice! Microsoft’s policy of forcing users to change their passwords every 60 days is about to change…

In a recent draft of the security configuration baseline settings for Windows 10 (v1903) and Windows Server (v1903), Microsoft state that they will no longer recommend that users periodically change their passwords, even going as far as to call the practice “an ancient and obsolete mitigation of very low value”. They will still continue to make recommendations on password length, history and complexity however.

We discussed this in detail on a recent episode of the Unravelling Technology podcast! Take a listen below, or download the episode on iTunes