Share via

Azure AD Joined Device not sync with azure AD

Rakesh Kumar 0 Reputation points
2023-08-05T09:52:26.4133333+00:00

i Join a windows device on Azure AD using Azure AD join device.

Now i can login with any of the user already created on Azure AD, but when i reset the user password from Microsoft Azure AD/ Entra user is still able to login with old credentials on that windows machine , so i want if i change password on azure ad on device required password change also and if i delete user on azure ad then user cannot be log on ad joined device

Issue description in simple points below

 

  1. We are join a windows 10 systems in azure ad (Process > account – access work or school account – join in azure ad domain)
  2. User create in azure ad and logon system successfully with first time credentials
  3. User logon and authentication works properly
  4. But problem is that when user password expiry or reset from azure ad portal
  5. No effect on device user can login in device the same password those provide first time
  6. Even user deleted from azure ad but still log in in systems with same credentials
  7. If we seen device activity log in device tab only showing device join date and time
  8. So problem is that device not sync with azure ad that’s why change on azure portal not effect on device
  9. We check on device azure ad connection info there device sync showing properly but not get the sync details on azure portal
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,253 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. JimmySalian-2011 42,371 Reputation points
    2023-08-05T14:30:08.7866667+00:00

    Hi Rakesh,

    How are you managing your devices? What version of Windows client devices are?Is it affecting all the users or single user and a single device?

    Kindly go through each steps and requirements and points in this page and see if you have missed or not configured any of the section listed - https://learn.microsoft.com/en-us/azure/active-directory/devices/device-join-plan

    Even check the supported OS on the client side. Also try disabling and enabling the device so this will refresh the PRT on the device and check again after sometime.

    Other way to test is whether the Password reset has worked Yes or No is via manually requesting user to use this link https://myapps.microsoft.com

    Also check the device logs from the portal.

    Hope this helps.

    JS

    ==

    Please Accept the answer if the information helped you. This will help us and others in the community as well.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.