This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 88%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGW%3C/text%3E%3C/svg%3E)
Hi,
I can see a similar question has been asked previously however the thread has been archived without a solution that resolves my issue.
I have inherited an Intune setup which manages numerous iOS devices and it has become apparent that when a users AD password is changed then MS Office applications stop syncing but there's no prompt for a password change. Historically what has been happening after AD password changes is that users have had to hand their iPhones over to their manager who then gives authority for the phone to be moved into an open security group whilst he/she [manager] enters the new Outlook password [or the password is entered under their supervision]. The phone is then moved back into the original security group before being handed back to the user.
This seems convoluted to me and I would have thought that I should be able to configure it so that the user can change their MS Office password without opening the phone to undue risk.
I would be grateful for any advice or thoughts on where this could be configured, is it 'Block modification of account settings'? If so, what vulnerabilities would this also present? I have a phone I can test with but I thought I would ask here before heading off in a possible wrong direction.
Thank you
Do you have AD Connect setup in your enviroment? Do you use password hash or PTA? How your O365 behaves in Windows devices?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 33%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECW%3C/text%3E%3C/svg%3E)
Basically, after the password is changed, it is the expected behavior that Outlook will continue using the old cached credentials. But after a time, Outlook will prompt you to update your password.
How long did you wait after the password was changed?
Is this a Windows Outlook app, or Outlook for mobile device?
The users in question waited a couple of days and the password could only be entered after the security was lowered on the phones.
Sorry for the delay reply due to researching. I noticed that a profile setting in Intune is blocking the pop-up that allows a new password to be entered for the office applications. Do you mean this profile set the password could only be entered after the security was lowered on the phones?
As a supplemental note here, Intune plays no part in authentication or password changes. This is purely AAD.
Thank you. It does appear however that a profile setting in Intune is blocking the pop-up that allows a new password to be entered for the office applications.
As a supplemental note here, Intune plays no part in authentication or password changes. This is purely AAD.
As a supplemental note here, Intune plays no part in authentication or password changes. This is purely AAD.