Error when configuring password writeback in AD Connect

Julian Symons (FTG-IT-MGR) 26 Reputation points
2022-05-05T07:39:02.19+00:00

Have been trying to get Password writeback working in Azure AD Connect but its failing to configure. I have followed all the steps as per the microsoft article -

https://learn.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-sspr-writeback

I have attached the event logs I get when installing in text format

I have also followed the troubleshooting steps as per - https://learn.microsoft.com/en-gb/azure/active-directory/authentication/troubleshoot-sspr-writeback?WT.mc_id=Portal-Microsoft_Azure_Support

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,567 questions
0 comments
Accepted answer
  1. Marilee Turscak-MSFT 34,121 Reputation points Microsoft Employee
    2022-05-05T23:58:32.7+00:00

    Hi @JulianSymonsFTGITMGR-3282 ,

    Thank you for sharing the event logs!

    I notice that you are receiving the following error: 

    The client and server cannot communicate, because they do not possess a common algorithm.

    According to several sources, this error can occur if you have not enabled either TLS 1.2 or 1.3 on the Azure AD Connect server, OR if you have not updated windows to support that version of TLS.

    You need to enable TLS 1.2 in both the schannel regkeys and the .netframework regkeys, and if you just enable it in one you may still run into this issue when enabling SSPR. (See related discussion.)

    Let me know if you have further questions!

    -

    If the information provided was helpful to you, please mark the thread as answer so that others in the community searching for similar information can more easily find a solution.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest