question

CoreyShanks-4004 avatar image
0 Votes"
CoreyShanks-4004 asked RohitKumarSinha-4468 commented

Syncing Force Password Change at Next Logon from local AD to AAD

I can't seem to sync across the force password change at next logon flag from my local AD to AAD. I am using Azure AD Connect and have followed several guides on how to set this up. I have SSPR and Password Writeback enabled. I have also set the ForcePasswordChangeOnLogon to true as followed here in this guide: https://blog.naglis.no/?p=3923. I have also run through the Azure AD Connect product and ran a configuration again to see if that would help sync across the password change flag. Is there anything else I am missing? Any help would be greatly appreciated!


Also forgot to include that I have Password Hash Synchronization enabled as well.

azure-active-directoryazure-ad-connect
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

hello,

What is the impact when this feature is enable in sync ?
Will be effected only on the user with change password nex logon flag or all users without that flag ?

Kind of regards,

Osman

0 Votes 0 ·

1 Answer

AndyDavid avatar image
0 Votes"
AndyDavid answered RohitKumarSinha-4468 commented

The force password change in of itself is not synced, you have to also set a temporary password on-prem. Are you doing that?
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-password-hash-synchronization#synchronizing-temporary-passwords-and-force-password-change-on-next-logon

64018-image.png



image.png (29.8 KiB)
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Thank you, Andy! I did not see the part where it says it wouldn't pick up the flag by itself. I tested it while setting a temporary password and everything is working correctly now!

1 Vote 1 ·

I am having the same issue even after setting a temporary password , getting error that the password has expired , type your updated password and try again

200877-image.png


0 Votes 0 ·
image.png (3.4 KiB)