Hello; when I try to enable password reset in the AD Connect server, in the "Configure" last step or "Configuration complete" screen, show this message:
- "Unable to configure password writeback. Please consult the event log for additional information"
I check the event viewer and these event with errors are listed:
Event ID: 32001 Source: PasswordResetService
"TrackingId a6841cf7-7bb0-4ebc-93f0-4f38707ec056, Couldn't connect to any service bus endpoint(s). Details:
----------
Event ID: 31044 Source: PasswordResetService
"TrackingId a6841cf7-7bb0-4ebc-93f0-4f38707ec056, Password writeback service is not a healthy state. No serviceHost for service bus endpoints are in running state. Please refer aka.ms/ssprtroubleshoot, Details: Version: 5.0.682.0"
----------
And these events with warnings are in the event viewer too:
Event ID: 31031 Source: PasswordResetService
"TrackingId a6841cf7-7bb0-4ebc-93f0-4f38707ec056, ServiceHost for Namespace ssprdedicatedsbprodscu, Endpoint: 99f7b55e-9cbe-467b-8143-919782918afb_42e1680c-c215-467c-af04-911914242a46 is not running. Details version: 5.0.682.0"
----------
Event ID: 32014 Source: PasswordResetService
"TrackingId: a6841cf7-7bb0-4ebc-93f0-4f38707ec056, Listener for Namespace: ssprdedicatedsbprodscu, Endpoint: 99f7b55e-9cbe-467b-8143-919782918afb_42e1680c-c215-467c-af04-911914242a46 offline Event. Last error encountered System.ServiceModel.CommunicationException: The client and server cannot communicate, because they do not possess a common algorithm ---> System.IO.IOException: The client and server cannot communicate, because they do not possess a common algorithm ---> System.ComponentModel.Win32Exception: The client and server cannot communicate, because they do not possess a common algorithm
at System.Net.SSPIWrapper.AcquireCredentialsHandle(SSPIInterface SecModule, String package, CredentialUse intent, SecureCredential scc)
at System.Net.Security.SecureChannel.AcquireCredentialsHandle(CredentialUse credUsage, SecureCredential& secureCredential)
at System.Net.Security.SecureChannel.AcquireClientCredentials(Byte[]& thumbPrint)
at System.Net.Security.SecureChannel.GenerateToken(Byte[] input, Int32 offset, Int32 count, Byte[]& output)
at System.Net.Security.SecureChannel.NextMessage(Byte[] incoming, Int32 offset, Int32 count)
at System.Net.Security.SslState.StartSendBlob(Byte[] incoming, Int32 count, AsyncProtocolRequest asyncRequest)
at System.Net.Security.SslState.ForceAuthentication(Boolean receiveFirst, Byte[] buffer, AsyncProtocolRequest asyncRequest)
at System.Net.Security.SslState.ProcessAuthentication(LazyAsyncResult lazyResult)
at System.Net.Security.SslStream.BeginAuthenticateAsClient(String targetHost, X509CertificateCollection clientCertificates, SslProtocols enabledSslProtocols, Boolean checkCertificateRevocation, AsyncCallback asyncCallback, Object asyncState)
at System.Net.Security.SslStream.BeginAuthenticateAsClient(String targetHost, AsyncCallback asyncCallback, Object asyncState)
at Microsoft.ServiceBus.ServiceBusClientWebSocket.ConnectAsyncResult.<>c__DisplayClass23_0.