The password can not be reset

Josue Cunha ( Dy ) 1 Reputation point
2020-05-15T14:22:31.447+00:00

The password can not be reset. This may be due to an incorrect level of administrative privilege or if trying to reset your own password.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,389 questions

4 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Josue Cunha ( Dy ) 1 Reputation point
    2020-05-19T11:49:13.633+00:00

    8378-thumbnail-ds.png

    Hi amanpreetsingh,

    I hope you are well and Thank you for response my request. I have setup the Azure AD connect and Password WriteBack to sync our AD to office which is working fine
    but when the users trying to reset the password on Azure portal doesnt work it give an error messege.
    Please see the pictures.

    Thanks!

  2. AmanpreetSingh-MSFT 56,301 Reputation points
    2020-05-19T15:01:34.213+00:00

    @Josue Cunha ( Dy ) Is the user trying to reset his own password? If yes, you need to enable Self Service Password Reset (SSPR) by navigating to Azure portal > Azure Active Directory > Password reset > Properties > select All or Selected users or groups.

    Once this is enabled, users need to go to https://passwordreset.microsoftonline.com/ or https://aka.ms/sspr to reset their password.

    If you are trying to reset the password of other users, you must have at least User Administrator role assigned to yourself. User Administrator can reset password for non-admin or a few limited administrator users. Refer to https://learn.microsoft.com/en-us/azure/active-directory/users-groups-roles/directory-assign-admin-roles#user-administrator for more details. If you want to reset password of Admin users, you need to have Global Administrator role assigned.

    Note: Make sure you meet the Licensing requirements for Azure Active Directory self-service password reset.

    -----------------------------------------------------------------------------------------------------------

    Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.

  3. AmanpreetSingh-MSFT 56,301 Reputation points
    2020-05-19T17:17:22.867+00:00

    @Josue Cunha ( Dy ) Please check below settings. If there is any error, check Application Event logs on the AD Connect server and see if there is no connectivity related events reported. You can also try disabling and enabling password writeback on AD connect server.

    8415-untitled.png

    -----------------------------------------------------------------------------------------------------------

    Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.

  4. AmanpreetSingh-MSFT 56,301 Reputation points
    2020-05-20T11:44:03.31+00:00

    @Josue Cunha ( Dy ) Looking at the error that you have shared, the issue is due to permissions issue. Please configure required permissions as documented here: https://learn.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-sspr-writeback#configure-account-permissions-for-azure-ad-connect

    Make sure you assign permissions to the account configured for On-prem AD Connector.

    Also, check if the user who is trying to reset the password don't have "User cannot change password" and "Password never expire" checkbox selected in on-prem AD.

    -----------------------------------------------------------------------------------------------------------

    Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.