In this section, we will configure the password reset capabilities of Azure AD to reduce support costs and introduce 24/7 availability. We add no restrictions to the service, and we only require one verification option to reset the password. To verify the reset, we will use the Mobile Phone and Alternate Email Address methods.
The next option we will activate is that the user will be forced to register their mobile phone number or an alternative e-mail address.
We can also activate an option so that a user can unlock his account over this functionality.
In this section, we will configure notification options so that the administrator will be notified if anomalous sign-ins or administrator password resets happen. Configure the notifications as in the following screenshot: