Currently on-prem AD, the password is set to change lets stay every 90 days. I know that it writes up to the cloud. And if password is changed in the cloud, it writes back to on-prem AD.
O365 Cloud password expiration is set to 180 days. So the password is out of sync after 90 days. A user that works mainly in the cloud will not know their password expired on AD and password in the cloud has another 90 days before expiration.
If i change the expiration in the cloud to match the 90 days on prem and its already the 120th day, what happens to the user? Will they still be able to change their password?
Is there a way to change the password expiration policy to a subset of users to test this?
Also if i change it to 90 days in the cloud. Will that restart the count? For example, a user's on prem AD password is changed today. Writes back to the cloud. Then two weeks later i changed the cloud password policy from 180 to 90. Does that reset? Or will it still take account of the date when the password was last changed?
Thank you in advanced.