B2C password reset cache/replication issue

Question

B2C password reset cache/replication issue

Morten Østerlund Jørgensen 31

We have had issues with setting new passwords in B2C users for the past 10 months (all the time that we have been using B2C).
User have to wait 0-8 min. after setting new password, before they can log in with the new. Login screen shows "Your password is incorrect" (UserMessageIfInvalidPassword).

Audit log in the Azure portal shows that password has been reset:
Service: Core Directory
Category: UserManagement
Activity: Reset user password
Status: Success
Initiated by: CPIM service

We also save a custom user attribute with hash of the old password, preventing password reuse.
Trying to reset password one more time with password v2, will fail because the new password has actually already been changed.

So clearly it must be a caching/replication issue, but why are we the only ones having this issue?

Anonymous

2021-12-07T01:03:47.21+00:00

Hi @Morten Østerlund Jørgensen , we are investigating your issue and will update you shortly.

Best,
James
Anonymous

2021-12-10T00:28:36.983+00:00

This is off the top of my head, but did you change regions? May be an explanation for the time increase. I'll keep digging as I'm sure it's not that simple.

Best,
James
Morten Østerlund Jørgensen 31 Reputation points

2021-12-13T08:13:00.077+00:00

I did not change regions. We have this code deployed in 4 different environments and see the same issue in all. 1 in the US and 3 in EU.

1 answer

Your answer

Anonymous

2021-12-07T01:03:47.21+00:00

Hi @Morten Østerlund Jørgensen , we are investigating your issue and will update you shortly.

Best,
James
Anonymous

2021-12-10T00:28:36.983+00:00

This is off the top of my head, but did you change regions? May be an explanation for the time increase. I'll keep digging as I'm sure it's not that simple.

Best,
James
Morten Østerlund Jørgensen 31 Reputation points

2021-12-13T08:13:00.077+00:00

I did not change regions. We have this code deployed in 4 different environments and see the same issue in all. 1 in the US and 3 in EU.

Answer 1

Anonymous

Hi @Morten Østerlund Jørgensen , I may have a solution for you, but if this doesn't work we'll need to open up a support ticket. A user was having a similar issue here. Please set forceChangePasswordNextLogin to false if you have not done so, and hopefully this will fix your issue. If not please let me know and I can escalate this.

If this answer helped you please mark it as "Verified" so other users may reference it.

Thank you,
James

Morten Østerlund Jørgensen 31 Reputation points

2021-12-13T08:18:45.967+00:00

ForceChangePasswordNextSignIn (as it is called in the Microsoft.Graph SDK GraphServiceClient) has been set to false for at least 1 year. We don't have this issue only when changing from initial password. It is an issue for even 1 year old B2C users that has been changing passwords 20-30 times.
Anonymous

2021-12-13T23:06:03.127+00:00

@Morten Østerlund Jørgensen , thanks for the reply. We're going to need to open up a support ticket for this so we can look into your environment. Please send me an email at "azcommunity@microsoft.com" with subject "ATTN: James Hamil" and attach your subscription ID. I can get you a free support ticket and hopefully fix this for you.

Best,
James

Share via

B2C password reset cache/replication issue

1 answer

Your answer