We noticed our HealthMailboxes have been locking out.  Based on a very small handful of sources, this is expected.  Best practice is to exclude HealthMailboxes from account lockout policies.

(source 1:  'Common Issues' section)

(source 2:  'Best Practices' section)

Question is, how many of you are doing this, and is it necessary?

At the moment, it seems like the only way to achieve this is through using a fine-grain password policy.

I suppose I'm reaching out to make sure I'm on the right track or not...

Thanks in advance!

• Edited by Robert deC 10 hours 43 minutes ago

We noticed our HealthMailboxes have been locking out.  Based on a very small handful of sources, this is expected.  Best practice is to exclude HealthMailboxes from account lockout policies.

(source 1:  'Common Issues' section)

(source 2:  'Best Practices' section)

Question is, how many of you are doing this, and is it necessary?

At the moment, it seems like the only way to achieve this is through using a fine-grain password policy.

I suppose I'm reaching out to make sure I'm on the right track or not...

Thanks in advance!

Yep, that sounds about right. Create the policy and apply it to the health mailboxes.