question

JosueCunhaDy-6151 avatar image
0 Votes"
JosueCunhaDy-6151 asked ·

The password can not be reset

The password can not be reset. This may be due to an incorrect level of administrative privilege or if trying to reset your own password.

azure-active-directory
· 1
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@JosueCunhaDy-6151 How are you resetting the password? Could you please include scenario details and the steps that you are performing which are resulting in this error. Always include as much information as you can so that you get accurate response to fix your problem.

0 Votes 0 · ·
JosueCunhaDy-6151 avatar image
0 Votes"
JosueCunhaDy-6151 answered ·

8378-thumbnail-ds.png


Hi amanpreetsingh,

I hope you are well and Thank you for response my request. I have setup the Azure AD connect and Password WriteBack to sync our AD to office which is working fine
but when the users trying to reset the password on Azure portal doesnt work it give an error messege.
Please see the pictures.

Thanks!



thumbnail-ds.png (7.0 KiB)
thumbnail-ds.png (7.0 KiB)
· 6 · Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Thank you for the guide which I have done but there is an error message popup. Please see the picture.8473-untitled-picture.png


8491-untitled-picture-df.png


0 Votes 0 · ·

I have done all your steps but8446-4.png still not working. I have tried disabling and enabling password writeback on AD connect server


0 Votes 0 · ·
4.png (85.6 KiB)

8456-7.png


0 Votes 0 · ·
7.png (24.2 KiB)

8429-8.png


0 Votes 0 · ·
8.png (23.9 KiB)

I have done all your steps but still not working. I have tried disabling and enabling password writeback on AD connect server8485-2.png


0 Votes 0 · ·
2.png (79.9 KiB)
Show more comments
amanpreetsingh-msft avatar image
0 Votes"
amanpreetsingh-msft answered ·

@JosueCunhaDy-6151 Is the user trying to reset his own password? If yes, you need to enable Self Service Password Reset (SSPR) by navigating to Azure portal > Azure Active Directory > Password reset > Properties > select All or Selected users or groups.

Once this is enabled, users need to go to https://passwordreset.microsoftonline.com/ or https://aka.ms/sspr to reset their password.

If you are trying to reset the password of other users, you must have at least User Administrator role assigned to yourself. User Administrator can reset password for non-admin or a few limited administrator users. Refer to https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/directory-assign-admin-roles#user-administrator for more details. If you want to reset password of Admin users, you need to have Global Administrator role assigned.

Note: Make sure you meet the Licensing requirements for Azure Active Directory self-service password reset.


Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.


· Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

amanpreetsingh-msft avatar image
0 Votes"
amanpreetsingh-msft answered ·

@JosueCunhaDy-6151 Please check below settings. If there is any error, check Application Event logs on the AD Connect server and see if there is no connectivity related events reported. You can also try disabling and enabling password writeback on AD connect server.

8415-untitled.png


Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.


untitled.png (30.6 KiB)
· Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

amanpreetsingh-msft avatar image
0 Votes"
amanpreetsingh-msft answered ·

@JosueCunhaDy-6151 Looking at the error that you have shared, the issue is due to permissions issue. Please configure required permissions as documented here: https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-sspr-writeback#configure-account-permissions-for-azure-ad-connect

Make sure you assign permissions to the account configured for On-prem AD Connector.

Also, check if the user who is trying to reset the password don't have "User cannot change password" and "Password never expire" checkbox selected in on-prem AD.


Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.

· 1 · Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@JosueCunhaDy-6151 Have you had a chance to try this out?

0 Votes 0 · ·