Forum Discussion
Adconnect and user password change
Hi Eric LE CORRE,
I know this is not the answer you are looking for, but the synchronization runs every 2 minutes. You cannot modify the frequency of this process. A synchronization between on-premise and Azure AD can be forced, but in this case, I would not recommend this.
I suggest you use Azure AD Password Writeback and let the user change their password in the Cloud instead of on their local clients. Therefore you also need to configure the so-called "EnforceCloudPasswordPolicyForPasswordSyncedUsers" feature. This is required to comply with the on-premise password expiration policy with Azure AD. I've written a blog about this. More information can be found here:
https://www.bilalelhaddouchi.nl/index.php/2020/09/24/comply-your-ad-password-expiration-policy-with-azure-ad/
And, of course the Microsoft Docs:
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-password-hash-synchronization
- hello,
thank you. Yes, i found this solution like you said.
it is necessary or not to have Azure P1 licences for all my users to have password write back functionnality ?
thanks- Hi Eric,
Yes, it is mandatory to have an Azure AD P1 license to get this functionality working. It will work for all users. But legal-wise, you should have enough P1 licenses available in your tenant to comply.- i don't understand you response. I need to have P1 licence for each user or just for admins account for example ?
