https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2FMicrosoft-365-Business-Blog%2FMicrosoft-365-Business-Supports-On-premises-Active-Directory%2Fba-p%...
Updated Jan 09, 2019
Version 2.0
Blog Post
2 MIN READ
Self Service Password Reset with on-premises writeback in Microsoft 365 Business
David Bjurman-Birr
Microsoft
MicrosoftEmmanuel705 AlexFields Skip Mercier Ashanka Iddya wroot
I have tested & confirmed that password writeback works in Microsoft 365 Business. Please follow the configuration guidance up to the last step titled "Enable password writeback option in SSPR". I found that we have a user interface bug on this configuration page that greys it out; however, it is actually enabled if everything else is done. Once we fix the UI bug, you'll be able to disable password writeback from this page.
Here is a short checklist for enabling SSPR with password writeback in M365B:
• Azure AD Connect 1.2.70.0 installed and configured for password hash sync
• Password Writeback enabled on the 'Optional features' screen in Azure AD Connect
• Self Service Password Reset enabled for users in Azure AD
• AD Permissions added for the Azure AD Connect Sync account (MSOL_xxxxxxxxxxxx)
Setup guidance:
2. https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-sspr-writeback
3. https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-writeback (Disregard the Enable password writeback option in SSP step if using M365 Business)
4. https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-sspr-windows (Optional)
Hope this helps!
David Bjurman-Birr