Forum Discussion

JimWilson2000's avatar
JimWilson2000
Copper Contributor
Sep 02, 2021
Solved

Password changes in M365 Vs Azure

We have a convoluted system based on our structure. We use an LDAP system as our primary directory. That syncs with on prem AD which then syncs to Azure. This is all designed one way and is not back ...
microsoft 365
  • pvanberlo's avatar
    pvanberlo
    Sep 02, 2021

    JimWilson2000 If the password is changed in Azure AD, there is no record of this on the on-prem AD side. Records on-prem will not just be synced towards Azure AD, there's usually a delta sync that happens, which means nothing will be overwritten unless the record in on-prem AD is changed. Have you considered using password writeback? This way using Azure AD Connect, password changes in Azure AD will be written back into on-prem AD.

JimWilson2000's avatar
JimWilson2000
Copper Contributor
Sep 02, 2021
LDAP (Oracle) is our authoritative directory based on our ERP and history. It makes sense about the delta though, I had not considered that.
pvanberlo's avatar
pvanberlo
MCT
Sep 02, 2021
Unless the settings were changed, the default Azure AD Connect uses would be to do a delta sync every 30 minutes, so this is likely the cause of your problems. How about just telling the helpdesk to actually not change the password there? 😉
  • JimWilson2000's avatar
    JimWilson2000
    Copper Contributor
    Sep 02, 2021
    That was the first thing I said!