Click Pass-Through Authentication to verify "Agents" are online.Under User Sign-In options verify Pass-Through Authentication is Enabled.Go to Azure Active Directory - Azure AD Connect.In login with global admin user account.Go back to AADC Sync Manager Connectors - Properties and enter the newly changed password.Changing the password and then logging in will "activate" the user with the new password.In private browser, go to then log in with UserName from step 3.1.Go to to find user from 3.1 then change the password.In Azure AD Connect Synchronization Manger - Connectors - Properties.Choose Radio Button: Pass-through authentication.In Azure AD Connect - Change user sign-in.In Azure AD Connect - Customize synchronization options - Optional features.Ill do my best to provide the 1-2-3 in a clear concise manner.
Any and all help or suggestions greatly appreciated.Īt long last we figured this out. Have not had success resetting the PW from portal with option for user to change at next logon. Today I can reset the pw on-prem, not check "Force user to change pw." and the user can login.ħ. MS Support cannot explain or determine how this was working 2 weeks ago.Ħ. MS Support has determined this is functioning "as expected/designed".ĥ. MS Support had me Enable Password Writeback. Was reinstalled on the recently demoted DC.ģ. Previous configuration: Azure AD Connect was installed on the primary DC. Around this time the password reset function broke when we check the "Force user to change password at next logon".ġ. Then about two weeks ago we created 3 new AD domain controllers, demoted the existing 3, then promoted the functional role. So when our retail users log into they would be prompted to change their password and life was happy. For over 1 year we've had a hybrid on-prem and O365 environment with on-prem as the authority.įor a password resets we would reset in AD on-prem, then run a Delta powershell to sync to O365.
0 kommentar(er)
