Forum Discussion

caotruonghoang's avatar
caotruonghoang
Copper Contributor
Aug 28, 2025

SSPR for synced account failed — error: OnPremisesUserNotFound

Hello, I’m encountering the following error for all synchronized accounts when attempting to use Self-Service Password Reset (SSPR): Error: OnPremisesUserNotFound Details: Synchronization Engine...
Azure AD
Ankit's avatar
Ankit
Brass Contributor
Aug 29, 2025

Hello,

The OnPremisesUserNotFound (hr=80230405) error occurs because SSPR cannot locate the corresponding on-premises AD object. To resolve this:

Verify that each user exists in on-prem AD and is within the sync scope.

Ensure the on-prem UPN matches the Azure AD UPN.

Confirm the ImmutableId (SourceAnchor) is correctly set for each user.

Make sure password writeback is enabled and the sync account has Reset Password and Replicate Directory Changes permissions.

Once these checks are done, perform a full sync in Azure AD Connect. This should resolve the issue.

Let me know if this works for you.

Thanks

  • caotruonghoang's avatar
    caotruonghoang
    Copper Contributor
    Sep 03, 2025

    Hello,

    I have verified the following:

    • The user exists in both on-premises AD and Entra ID.
    • UPN values match.
    • ObjectGUID and ImmutableID are consistent.
    • Password writeback is enabled.
    • The sync account has the required permissions.
    • A full synchronization has been performed.

    However, the issue still persists.

    Thanks,

Resources