question

FrankFreitas-1510 avatar image
0 Votes"
FrankFreitas-1510 asked amanpreetsingh-msft answered

AZURE AD and ON perm AD

We are remote, and we have users that do not need to log into VPN. SO when they change their AD creds it never syncs to their laptops. I am trying to figure out what AZure resources I need to set up so these users sync with AZURE AD so their passwords are always synced..

azure-ad-user-management
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

amanpreetsingh-msft avatar image
0 Votes"
amanpreetsingh-msft answered

Hi @FrankFreitas-1510 · Thank you for reaching out.

As documented under General limitations, VPN or line of sight is required for Hybrid Azure AD joined machines to use new password.

  • Hybrid Azure AD joined machines must have network connectivity line of sight to a domain controller to use the new password and update cached credentials. This means that devices must either be on the organization's internal network or on a VPN with network access to an on-premises domain controller.

Alternatively, if you have your devices Azure AD Joined (not hybrid), you can:
1. First Enable Azure Active Directory self-service password reset at the Windows sign-in screen
2. And then Enable Azure Active Directory self-service password reset writeback to an on-premises environment


Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.