B2C password reset cache/replication issue

Morten Østerlund Jørgensen 26 Reputation points
2021-12-06T09:56:34.583+00:00

We have had issues with setting new passwords in B2C users for the past 10 months (all the time that we have been using B2C).
User have to wait 0-8 min. after setting new password, before they can log in with the new. Login screen shows "Your password is incorrect" (UserMessageIfInvalidPassword).

Audit log in the Azure portal shows that password has been reset:
Service: Core Directory
Category: UserManagement
Activity: Reset user password
Status: Success
Initiated by: CPIM service

We also save a custom user attribute with hash of the old password, preventing password reuse.
Trying to reset password one more time with password v2, will fail because the new password has actually already been changed.

So clearly it must be a caching/replication issue, but why are we the only ones having this issue?

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,579 questions
{count} votes

1 answer

Sort by: Most helpful
  1. James Hamil 20,901 Reputation points Microsoft Employee
    2021-12-10T21:19:29.44+00:00

    Hi @Morten Østerlund Jørgensen , I may have a solution for you, but if this doesn't work we'll need to open up a support ticket. A user was having a similar issue here. Please set forceChangePasswordNextLogin to false if you have not done so, and hopefully this will fix your issue. If not please let me know and I can escalate this.

    If this answer helped you please mark it as "Verified" so other users may reference it.

    Thank you,
    James