I understand there is a new(ish) feature we can enable on our tenant to sync password expiration
I just want to check the steps
Enable that policy
Do I need to set Set-MsolPasswordPolicy for the tenant to match my onsite AD? Or does it get that password expiration value from my onsite AD from AD Connect per each user?
We already are using password hash sync (and writeback). I believe I need to update all my existing users so they're updated but will this apply to new users, or do we need to manually update new users when connected?