Question about password hash sync

Matt Thornton 20 Reputation points
2023-03-08T02:39:47.0166667+00:00

Hi,

I am trying to understand how password hash sync works. If 365 only syncs a hash from the DC and not the actual password, then what exactly happens when you enter your password into a web app or office.com for it to be able to know that you are entering the correct password? Also any thoughts on PHS vs PTA with regards to security would be helpful.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,383 questions
Accepted answer
  1. TP 74,786 Reputation points
    2023-03-08T02:46:31.15+00:00

    Hi,

    The password that you enter when signing in to office.com is hashed, and then this is compared to the synced hash. If the two match, then Azure AD knows you entered the correct password.

    If the above was helpful please click Accept Answer.

    Thanks.

    -TP

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest