MT.1013 - At least one Conditional Access policy is configured to require new password when user risk is high.
Overview
Checks if the tenant has at least one conditional access policy requiring password change for high user risk.
See User risk-based password change - Microsoft Learn
Test Metadata
| Field | Value |
|---|---|
| Test ID | MT.1013 |
| Severity | High |
| Suite | Maester |
| Category | CA |
| PowerShell test | Test-MtCaRequirePasswordChangeForHighUserRisk |
| Tags | CA, Maester, MT.1013 |
Source
- Pester test:
tests/Maester/Entra/Test-ConditionalAccessBaseline.Tests.ps1 - PowerShell source:
powershell/public/maester/entra/Test-MtCaRequirePasswordChangeForHighUserRisk.ps1