SSPR for synced account failed — error: OnPremisesUserNotFound

Try the following to resolve:

1. Confirm the On-Prem Object Exists

• Open Active Directory Users and Computers (ADUC)
• Verify that the affected user still exists and hasn’t been moved to an OU excluded from sync

2. Check Sync Rules in Entra Connect

• Open the Synchronization Rules Editor
• Ensure that inbound and outbound rules for user objects are correctly configured
• Look for any custom rules that might be filtering out the user

3. Verify Service Account Permissions

• The account used by Entra Connect must have read/write access to the user object
• Specifically, it needs permission to reset passwords and write back changes

4. Restart the Sync Service

• On the Entra Connect server, restart the Microsoft Entra Connect Sync service
• This can clear transient errors and reinitialize connections

5. Disable and Re-enable Password Writeback

• In the Entra admin portal, toggle Password Writeback off and then back on
• This can refresh the configuration and resolve binding issues

6. Check Network Connectivity

• Ensure outbound HTTPS access to:
• *.passwordreset.microsoftonline.com
• *.servicebus.windows.net
• Use PowerShell to test:

Test-NetConnection -ComputerName <namespace>.servicebus.windows.net -Port 443