We have Intune setup with an Hybrid AD (onpremise DC synced with Azure).
About 50% of our devices show as error for password expiration.
They are all on the same domain with the same GPOS internally that expire passwords every 90 days.
Intune device configuration policy matches that with 90 days.
Password expiration (days)
-2016281112 (Remediation failed)